Spyboot- uvek isti 'spijuni'-kako ih zastalno ukloniti

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 04 Okt 2010 12:27

:( auu Bogdane, sta sad ? odakle da uzmem taj text?.

obrisala sam sve sa desktop-a osim Combofix.exe i comboFix.txt koji je na srecu na C:
ja mislila da je sve gotovo..

a upravo sada vidim opet je onaj 'Doubleclick' pronadjen ..i neka nova dva se pojavila (Adbrite, Statcounter)

da li da ponovo pokrenem Combofix.exe?

Dopuna: 04 Okt 2010 12:31

izvini opet se muvam, brzopleto
..sad cu uraditi kako si rekao s
malo kasno paljenje..
kopirati cu taj text koji si mi dao u notepad..i slediti uputstvo..

Dopuna: 04 Okt 2010 13:02

evo texta..nakon 10 minrada combofix-a
ali iskljucila sam zastitu tek kasnije kad je poceo rad combofixa..i zatvorila sve ostale programe..
da li je izvestaj ipak u redu? ili treba da ponovim?

i zasto dobivam dialoge na svedskom?..

Dopuna: 04 Okt 2010 13:07

izvinite jos jednom ..nevidim u poruci prikaceni Combofix fajl pa ga ovako copy/paste saljem..
i sad vidim da je spyboot bio iskljucen..
..................
ComboFix 10-10-01.07 - zora 2010-10-04 12:45:51.2.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.46.1033.18.2813.1824 [GMT 2:00]
Körs från: c:\users\zora\Desktop\ComboFix.exe
Använda kommandoväxlar :: c:\users\zora\Desktop\CFScript.txt
SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
* Skapade en ny återställningspunkt

FILE ::
"c:\program files\YouTube Downloader Toolbar\SearchSettings.exe"
"c:\program files\YouTube Downloader Toolbar\SSFF\components\SearchSettingsFF.dll"
.

((((((((((((((((((((((((((((((((((((((( Andra raderingar ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\YouTube Downloader Toolbar\SearchSettings.exe
c:\program files\YouTube Downloader Toolbar\SSFF\components\SearchSettingsFF.dll

.
(((((((((((((((((((((((( Filer Skapade från 2010-09-04 till 2010-10-04 ))))))))))))))))))))))))))))))
.

2010-10-04 10:52 . 2010-10-04 10:52 -------- d-----w- c:\users\zora\AppData\Local\temp
2010-10-04 10:52 . 2010-10-04 10:52 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-10-04 10:52 . 2010-10-04 10:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-10-04 10:35 . 2010-10-04 10:36 -------- d-----w- C:\32788R22FWJFW
2010-10-01 15:59 . 2010-10-01 15:59 -------- d-----w- c:\program files\VITSOFT
2010-09-29 23:07 . 2010-09-29 23:07 -------- d-----w- c:\program files\Common Files\Skype
2010-09-29 23:06 . 2010-09-29 23:07 -------- d-----r- c:\program files\Skype
2010-09-29 14:41 . 2010-03-04 04:04 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2010-09-29 14:41 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys
2010-09-29 13:21 . 2010-06-19 06:15 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-27 18:34 . 2010-09-27 18:34 -------- d-----w- c:\users\zora\AppData\Roaming\ATI
2010-09-27 18:34 . 2010-09-27 18:34 -------- d-----w- c:\users\zora\AppData\Local\ATI
2010-09-27 18:34 . 2010-09-27 18:34 -------- d-----w- c:\programdata\ATI
2010-09-27 18:32 . 2010-09-27 18:32 -------- d-----w- c:\program files\Common Files\ATI Technologies
2010-09-27 18:30 . 2010-09-27 18:30 -------- d-----w- C:\AMD
2010-09-27 17:57 . 2010-09-27 17:57 9728 ----a-w- c:\windows\system32\yk62x86ver.dll
2010-09-27 11:37 . 2010-09-27 15:16 117639744 ----a-w- c:\users\zora\AppData\Roaming\Easeware\DriverEasy\drivers\hqiorrjt.cdv\8.663.1_Beta5_Hemlock_VistaWin7_Nov11.exe
2010-09-27 11:34 . 2010-09-27 11:34 497160 ----a-w- c:\users\zora\AppData\Roaming\Real\RealPlayer\setup\AU_setup17.exe
2010-09-26 19:16 . 2010-09-26 19:16 -------- d-----w- c:\users\zora\AppData\Roaming\Leadertech
2010-09-22 23:07 . 2010-09-22 23:07 -------- d-----w- c:\program files\Application Updater
2010-09-22 23:07 . 2010-10-04 10:51 -------- d-----w- c:\program files\YouTube Downloader Toolbar
2010-09-19 21:19 . 2010-09-19 21:19 -------- d-----w- c:\program files\Pegasus Media Software
2010-09-19 20:58 . 2010-09-19 21:12 -------- d-----w- c:\program files\Free Video Joiner
2010-09-19 15:14 . 2010-09-19 15:14 -------- d-----w- c:\users\zora\AppData\Local\Apps
2010-09-19 15:14 . 2010-09-19 15:20 -------- d-----w- c:\users\zora\AppData\Local\Deployment
2010-09-16 20:05 . 2010-09-16 20:05 -------- d-----w- c:\programdata\ALM
2010-09-16 12:26 . 2010-09-16 12:26 -------- d-----w- c:\users\zora\AppData\Roaming\Sony Creative Software
2010-09-15 07:46 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-14 12:11 . 2010-09-17 21:46 -------- d-----w- c:\program files\Common Files\Adobe
2010-09-14 12:11 . 2010-09-18 17:58 -------- d-----w- c:\users\zora\AppData\Local\Adobe
2010-09-13 20:22 . 2009-06-09 11:28 64000 ------w- c:\windows\system32\agrsmdel.exe
2010-09-13 20:22 . 2009-03-27 16:12 14848 ------w- c:\windows\system32\agrsco64.dll
2010-09-13 20:22 . 2010-09-13 20:22 -------- d-----w- c:\program files\LSI SoftModem
2010-09-13 20:21 . 2010-09-13 20:21 -------- d-----w- c:\windows\Options
2010-09-13 19:43 . 2010-09-13 19:43 -------- d-----w- c:\program files\Synaptics
2010-09-13 18:19 . 2010-09-13 18:19 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2010-09-13 18:19 . 2010-09-13 18:19 91376 ----a-w- c:\windows\system32\bcmwlcoi.dll
2010-09-13 18:19 . 2010-09-13 18:19 3870720 ----a-w- c:\windows\system32\bcmihvsrv.dll
2010-09-13 18:19 . 2010-09-13 18:19 3559424 ----a-w- c:\windows\system32\bcmihvui.dll
2010-09-13 18:19 . 2010-09-13 18:19 2707448 ----a-w- c:\windows\system32\drivers\BCMWL6.SYS
2010-09-13 18:19 . 2010-09-13 18:19 -------- d-----w- c:\program files\Broadcom
2010-09-13 16:46 . 2009-06-25 11:58 138240 ----a-w- c:\windows\system32\aestacap.dll
2010-09-13 16:46 . 2009-05-21 11:58 372736 ----a-w- c:\windows\system32\aestecap.dll
2010-09-13 16:46 . 2009-03-02 10:57 61440 ----a-w- c:\windows\system32\aestaren.dll
2010-09-13 16:46 . 2009-10-12 12:51 495708 ----a-w- c:\windows\sttray.exe
2010-09-13 16:46 . 2009-10-12 12:51 3043328 ----a-w- c:\windows\system32\stlang.dll
2010-09-13 16:46 . 2009-03-02 10:47 86016 ----a-w- c:\windows\system32\AESTCom.dll
2010-09-13 16:46 . 2009-10-12 12:51 175616 ----a-w- c:\windows\system32\staco.dll
2010-09-13 16:45 . 2009-10-12 12:51 420864 ----a-w- c:\windows\system32\drivers\stwrt.sys
2010-09-13 16:45 . 2009-10-12 12:51 916480 ----a-w- c:\windows\system32\stapo.dll
2010-09-13 16:45 . 2009-10-12 12:51 492032 ------w- c:\windows\system32\stapi32.dll
2010-09-13 16:45 . 2009-10-12 12:51 405504 ----a-w- c:\windows\system32\stcplx.dll
2010-09-13 16:45 . 2010-09-13 16:47 -------- d-----w- c:\program files\IDT
2010-09-13 16:45 . 2010-09-13 20:21 -------- d-----w- C:\SwSetup
2010-09-13 13:21 . 2010-09-13 13:21 -------- d-----w- c:\users\zora\AppData\Roaming\Easeware
2010-09-13 13:21 . 2010-09-13 13:21 -------- d-----w- c:\program files\Easeware
2010-09-13 13:03 . 2010-09-13 13:03 -------- d-----w- c:\program files\WinASO
2010-09-13 12:59 . 2010-09-13 13:00 -------- d-----w- c:\program files\Next Video Converter

.
(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-04 09:59 . 2010-02-11 12:06 -------- d-----w- c:\users\zora\AppData\Roaming\Orbit
2010-10-04 08:37 . 2010-02-11 19:57 -------- d-----w- c:\users\zora\AppData\Roaming\Dropbox
2010-10-03 23:09 . 2010-02-15 12:45 -------- d-----w- c:\users\zora\AppData\Roaming\vlc
2010-10-03 23:02 . 2010-06-07 11:53 -------- d-----w- c:\program files\Avidemux 2.5
2010-10-03 16:58 . 2010-04-05 19:05 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2010-10-01 15:59 . 2010-10-01 15:59 -------- d-----w- c:\program files\VITSOFT
2010-09-30 01:27 . 2010-02-15 22:59 -------- d-----w- c:\users\zora\AppData\Roaming\Skype
2010-09-29 23:07 . 2010-02-15 23:03 -------- d-----w- c:\users\zora\AppData\Roaming\skypePM
2010-09-29 23:07 . 2010-02-15 22:58 -------- d-----w- c:\programdata\Skype
2010-09-29 16:56 . 2010-06-23 10:20 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-27 18:34 . 2010-02-14 09:26 -------- d-----w- c:\program files\ATI Technologies
2010-09-27 11:44 . 2010-09-27 11:44 49152 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Components\nprpffbrowserrecordext.dll
2010-09-27 11:44 . 2010-09-27 11:44 45056 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimwmp.dll
2010-09-27 11:44 . 2010-09-27 11:44 45056 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimswf.dll
2010-09-27 11:44 . 2010-09-27 11:44 45056 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimrp.dll
2010-09-27 11:44 . 2010-09-27 11:44 45056 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimqt.dll
2010-09-27 11:44 . 2010-09-27 11:44 40960 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchromebrowserrecordhelper.dll
2010-09-27 11:44 . 2010-09-27 11:44 308808 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Common\rpmainbrowserrecordplugin.dll
2010-09-27 11:44 . 2010-09-27 11:44 14848 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
2010-09-27 11:44 . 2010-09-27 11:44 341600 ----a-w- c:\programdata\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
2010-09-27 11:44 . 2010-04-08 06:53 -------- d-----w- c:\program files\Common Files\Real
2010-09-27 11:44 . 2010-04-08 06:53 -------- d-----w- c:\program files\Real
2010-09-27 11:44 . 2010-09-27 11:44 -------- d-----w- c:\program files\Common Files\xing shared
2010-09-27 11:43 . 2003-10-17 12:44 499712 ----a-w- c:\windows\system32\msvcp71.dll
2010-09-23 20:24 . 2010-07-26 23:38 -------- d-----w- c:\users\zora\AppData\Roaming\Sony
2010-09-23 01:05 . 2010-02-14 21:59 -------- d-----w- c:\users\zora\AppData\Roaming\uTorrent
2010-09-17 22:11 . 2010-02-07 18:48 69816 ----a-w- c:\users\zora\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-16 21:42 . 2010-02-13 11:03 -------- d-----w- c:\program files\Common Files\Common Share
2010-09-15 23:13 . 2010-07-27 20:55 -------- d-----w- c:\users\zora\AppData\Roaming\Publish Providers
2010-09-15 08:17 . 2010-02-10 16:28 -------- d-----w- c:\programdata\Microsoft Help
2010-09-13 23:55 . 2010-02-13 10:06 -------- d-----w- c:\users\zora\AppData\Roaming\dvdcss
2010-09-13 19:43 . 2010-09-13 19:43 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_SynTP_01007.Wdf
2010-09-13 16:45 . 2010-02-14 09:23 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-13 12:28 . 2010-02-14 00:54 -------- d-----w- c:\program files\ReviverSoft
2010-09-13 12:24 . 2010-08-04 23:05 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2010-09-13 12:11 . 2010-02-16 08:00 -------- d-----w- c:\program files\Your Uninstaller 2008
2010-09-12 11:04 . 2010-07-10 16:41 452104 ----a-w- c:\users\zora\AppData\Roaming\Real\Update\setup3.12\setup.exe
2010-09-08 21:23 . 2010-02-11 12:06 -------- d-----w- c:\users\zora\AppData\Roaming\GrabPro
2010-08-30 12:34 . 2010-09-04 10:44 1496064 ----a-w- c:\users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\iatjo3y8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
2010-08-30 12:33 . 2010-09-04 10:44 43008 ----a-w- c:\users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\iatjo3y8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
2010-08-30 12:33 . 2010-09-04 10:44 338944 ----a-w- c:\users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\iatjo3y8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
2010-08-30 12:33 . 2010-09-04 10:44 346112 ----a-w- c:\users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\iatjo3y8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
2010-08-28 18:07 . 2010-08-28 17:46 -------- d-----w- c:\users\zora\AppData\Roaming\Spotify
2010-08-28 17:46 . 2010-08-28 17:46 655360 ----a-w- c:\users\zora\AppData\Roaming\Spotify\Gracenote\gnsdk_sdkmanager.dll
2010-08-28 17:46 . 2010-08-28 17:46 282624 ----a-w- c:\users\zora\AppData\Roaming\Spotify\Gracenote\gnsdk_musicid_file.dll
2010-08-28 17:46 . 2010-08-28 17:46 208896 ----a-w- c:\users\zora\AppData\Roaming\Spotify\Gracenote\gnsdk_dsp.dll
2010-08-28 17:45 . 2010-08-28 17:45 -------- d-----w- c:\program files\Spotify
2010-08-24 09:28 . 2010-08-24 09:28 2240664 ----a-w- c:\users\zora\AppData\Roaming\Easeware\DriverEasy\drivers\atzqjzec.vlt\setup_v11.28.6.3\setup.exe
2010-08-24 07:33 . 2010-08-24 07:33 374048 ----a-w- c:\windows\system32\yk62x86.dll
2010-08-24 07:33 . 2010-08-24 07:33 323360 ----a-w- c:\windows\system32\drivers\yk62x86.sys
2010-08-22 20:11 . 2010-08-22 20:11 -------- d-----w- c:\program files\Common Files\Java
2010-08-22 20:01 . 2010-05-23 20:07 -------- d-----w- c:\program files\Java
2010-08-22 12:13 . 2010-04-11 17:07 -------- d-----w- c:\users\zora\AppData\Roaming\Audacity
2010-08-22 11:05 . 2010-08-22 11:05 -------- d-----w- c:\program files\Recuva
2010-08-22 10:17 . 2010-02-17 20:40 -------- d-----w- c:\users\zora\AppData\Roaming\Media Player Classic
2010-08-21 21:35 . 2010-02-10 15:38 -------- d-----w- c:\program files\Oshobooks
2010-08-19 20:47 . 2010-08-19 20:47 -------- d-----w- c:\program files\Lame for Audacity
2010-08-16 08:42 . 2010-08-16 08:42 -------- d-----w- c:\users\zora\AppData\Roaming\ProgSense
2010-08-16 08:42 . 2010-08-16 06:37 -------- d-----w- c:\program files\Orbitdownloader
2010-08-15 20:46 . 2010-08-15 19:52 -------- d-----w- c:\program files\GetASFStream
2010-08-11 16:23 . 2010-04-21 07:24 -------- d-----w- c:\program files\Free PDF to Word Converter
2010-08-05 17:55 . 2010-02-22 15:20 -------- d-----w- c:\program files\Defraggler
2010-07-29 06:30 . 2010-08-12 18:52 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-07-29 06:30 . 2010-08-12 18:52 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-07-21 18:34 . 2010-02-26 05:39 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2010-07-21 18:33 . 2010-02-26 05:39 346944 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2010-07-17 03:00 . 2010-05-23 20:08 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-08 19:46 . 2010-07-08 19:46 0 ----a-w- c:\windows\nsreg.dat
1999-06-25 09:55 . 2010-02-10 19:58 149504 ----a-w- c:\program files\UNWISE.EXE
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
.

(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Not* Tomma poster & legitima standardposter visas inte.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-05-26 13:23 1385864 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-05-26 1385864]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-05-26 1385864]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\zora\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\zora\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2009-12-09 01:19 94208 ----a-w- c:\users\zora\AppData\Roaming\Dropbox\bin\DropboxExt.13.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\users\zora\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-09-19 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-06-01 1093208]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2009-07-16 233472]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-03-15 180224]
"dvd43"="c:\program files\dvd43\dvd43_tray.exe" [2009-10-23 827904]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-10 2221352]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-10-12 495708]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-29 1545512]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-09-27 202256]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-11-10 98304]

c:\users\zora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\zora\AppData\Roaming\Dropbox\bin\Dropbox.exe [2010-2-26 21979992]
Sk„rmurklipp och start f”r OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BankID Security Application.lnk - c:\program files\Personal\bin\Personal.exe [2010-7-17 939920]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [2009-07-03 25600]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [2009-12-21 16456]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [2009-12-21 11088]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-03-02 1343400]
R3 vpcuxd;USB Virtualization Stub Service;c:\windows\system32\DRIVERS\vpcuxd.sys [2009-09-23 12800]
R3 zteusbser;ZTE USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\zteusbser.sys [2007-04-10 98432]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-04-05 691696]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [2010-06-23 64288]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_499a67a913bde1c7\aestsrv.exe [2009-03-02 81920]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-11-11 172032]
S2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [2010-02-19 380928]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2010-06-30 1352832]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2009-10-19 31288]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2010-08-24 323360]

.
Innehållet i mappen 'Schemalagda aktiviteter':

2010-10-04 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2010-02-04 10:47]

2010-09-13 c:\windows\Tasks\DriverEasy Scheduled Scan.job
- c:\program files\Easeware\DriverEasy\DriverEasy.exe [2010-09-13 18:29]

2010-10-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1655287907-1841894106-2909972900-1000Core.job
- c:\users\zora\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-19 15:23]

2010-10-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1655287907-1841894106-2909972900-1000UA.job
- c:\users\zora\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-19 15:23]
.
.
------- Extra genomsökning -------
.
uStart Page = [Link mogu videti samo ulogovani korisnici]
IE: &Download by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/201
IE: &Grab video by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/204
IE: Append Link Target to Existing PDF
IE: Do&wnload selected by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/203
IE: Down&load all by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/202
IE: E&xportera till Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\iatjo3y8.default\
FF - prefs.js: browser.startup.homepage - [Link mogu videti samo ulogovani korisnici]
FF - prefs.js: keyword.URL - [Link mogu videti samo ulogovani korisnici]
FF - component: c:\program files\Orbitdownloader\addons\OneClickYouTubeDownloader\components\GrabXpcom.dll
FF - component: c:\program files\YouTube Downloader Toolbar\FF\components\youtubedownloaderToolbarFF.dll
FF - component: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\components\nprpffbrowserrecordext.dll
FF - component: c:\users\zora\AppData\Roaming\Mozilla\Firefox\Profiles\iatjo3y8.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Personal\bin\np_prsnl.dll
FF - plugin: c:\program files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: c:\users\zora\AppData\Local\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\users\zora\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll

---- FIREFOX POLICY ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
.
--------------------- LÅSTA REGISTERNYCKLAR ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Sluttid: 2010-10-04 12:53:53
ComboFix-quarantined-files.txt 2010-10-04 10:53
ComboFix2.txt 2010-10-02 22:47

Före genomsökningen: 9 073 197 056 bytes free
Efter genomsökningen: 9 080 782 848 bytes free

- - End Of File - - 8F5CE4F78E4E4211C749FFF280DF5D68

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

To na čega Spybot ukazuje je malo preterana reakcija sa njegove strane.


Nije to ništa opasno po tebe i tvoj računar.

Ono što je trebalo to smo uklonili, tako da nema više malicioznih programa.


Isprati još sledeće:


Potrebno je deinstalirati ComboFix:
klikni start (ili ), a zatim RUN.

Na Visti koristiti Start Search polje ukoliko Run nije dostupan.

U liniju za unos teksta ukucaj (iskopiraj) sledeće:

ComboFix /Uninstall

Primeti da postoji razmak između "ComboFix" i "/Uninstall".



a zatim klikni OK (ili pritisni Enter).

Sačekaj da se proces deinstalacije završi.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Hvala! sve sam uradila prema tvom uputstvu..
i hvala na strpljenju sa mnom!

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

I drugi put kad i ako zatreba.