hi,
ok here we go: before using combofix and hjt please disable spybots tea timer, see list for the how and for other software:
http://www.bleepingcomputer.com/forums/topic114351.html
Click Start, then Run and type Notepad and click OK.
Copy/paste the text in the code box below into notepad:
Code:
File::
C:\WINDOWS\SYSTEM32\qtstv.bak1
C:\WINDOWS\system32\jqarhkdm.dll
C:\WINDOWS\system32\obmfdxnd.dll
Folder:
C:\Program Files\Insider\Insider.exe
Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"34be82d1"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\jkkligh]
[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\pmnllmn]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{17C48B1F-A907-47A8-A3A2-894F90449AA7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3c6b1055-9a8f-4461-ad65-3abee9c78631}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B2EB18-2DC2-4E9A-8F5A-08B1034C0F1E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BAB8361B-BBAA-4330-9B46-B3B970B823C2}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C2FDF065-55C8-4AED-BF8F-F55D596CE65C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E6EE400B-9F68-4CCB-BC27-D583FDF9435D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ED6F2023-07C4-4A4F-BF0C-A4C46AA69C0D}]
Name the Notepad file CFScript.txt and Save it to your desktop.
now locate both the file you just saved and the combofix icon
using your mouse drag the CFScript right on top of the combofix icon and release, combofix will run and produce a new log
please post the new combofix log and a new hjt log.