Page 1 of 3 123 LastLast
Results 1 to 10 of 29

Thread: Reports of Spybot Search & Destroy 2.2 are clean and no virus?

  1. #1
    Junior Member
    Join Date
    Oct 2013
    Posts
    26

    Default Reports of Spybot Search & Destroy 2.2 are clean and no virus?

    Search results from Spybot - Search & Destroy

    22/10/2013 16:06:00
    Scan took 00:34:01.
    21 items found.

    Badoo: [SBI $8E73A7FB] Bookmark (Firefox: Florenci (default)) (Browser: Bookmark, nothing done)


    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
    HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Internet Settings\User Agent

    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings\User Agent

    Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
    HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Inter net Settings\User Agent

    MS Direct3D: [SBI $7FB7B83F] Most recent application (Registry Change, nothing done)
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\Mos tRecentApplication\Name

    MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
    HKEY_USERS\.DEFAULT\Software\Microsoft\Direct3D\Mo stRecentApplication\Name

    MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Direct3D\MostRecentApplica tion\Name

    MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done)
    HKEY_USERS\S-1-5-18\Software\Microsoft\Direct3D\MostRecentApplicati on\Name

    MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\M ostRecentApplication\Name

    Windows.OpenWith: [SBI $A1C94E79] Open with list - .BMP extension (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.BMP\OpenWithList

    Windows.OpenWith: [SBI $99432203] Open with list - .CFG extension (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.CFG\OpenWithList

    Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\StreamMRU

    Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\RecentDocs

    Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows Media\WMSDK\General\ComputerName

    Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows Media\WMSDK\General\UniqueID

    Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber

    WinRAR: [SBI $B84F9965] Last used directory (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-453603945-2037550232-2177108121-1000\Software\WinRAR\General\LastFolder

    Cookie: [SBI $49804B54] Browser: Cookie (1) (Browser: Cookie, nothing done)


    Cache: [SBI $49804B54] Browser: Cache (5) (Browser: Cache, nothing done)


    History: [SBI $49804B54] Browser: History (1) (Browser: History, nothing done)


    Cookie: [SBI $49804B54] Browser: Cookie (65) (Browser: Cookie, nothing done)



    --- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) ---

    2013-09-20 blindman.exe (2.2.18.151)
    2013-09-20 explorer.exe (2.2.18.177)
    2013-09-20 SDBootCD.exe (2.2.18.109)
    2013-09-20 SDCleaner.exe (2.2.18.110)
    2013-09-20 SDDelFile.exe (2.2.18.94)
    2013-06-18 SDDisableProxy.exe
    2013-09-20 SDFiles.exe (2.2.18.135)
    2013-09-20 SDFileScanHelper.exe (2.2.16.1)
    2013-10-15 SDFSSvc.exe (2.2.25.211)
    2013-10-10 SDHookHelper.exe (2.3.30.2)
    2013-10-10 SDHookInst32.exe (2.3.30.2)
    2013-10-10 SDHookInst64.exe (2.3.30.2)
    2013-09-20 SDImmunize.exe (2.2.18.130)
    2013-05-16 SDLogReport.exe (2.1.18.107)
    2013-10-14 SDOnAccess.exe (2.2.25.4)
    2013-09-20 SDPESetup.exe (2.2.18.3)
    2013-09-20 SDPEStart.exe (2.2.18.86)
    2013-09-20 SDPhoneScan.exe (2.2.18.28)
    2013-09-20 SDPRE.exe (2.2.18.22)
    2013-09-20 SDPrepPos.exe (2.2.18.10)
    2013-09-20 SDQuarantine.exe (2.2.18.103)
    2013-09-20 SDRootAlyzer.exe (2.2.18.116)
    2013-09-20 SDSBIEdit.exe (2.2.18.39)
    2013-09-20 SDScan.exe (2.2.18.177)
    2013-09-20 SDScript.exe (2.2.18.53)
    2013-10-15 SDSettings.exe (2.2.25.138)
    2013-09-20 SDShell.exe (2.2.18.2)
    2013-09-20 SDShred.exe (2.2.18.107)
    2013-09-20 SDSysRepair.exe (2.2.18.101)
    2013-09-20 SDTools.exe (2.2.18.150)
    2013-07-25 SDTray.exe (2.1.21.129)
    2013-09-20 SDUpdate.exe (2.2.18.91)
    2013-09-20 SDUpdSvc.exe (2.2.18.76)
    2013-09-20 SDWelcome.exe (2.2.21.129)
    2013-09-13 SDWSCSvc.exe (2.2.22.2)
    2013-06-19 spybotsd2-translation-frx.exe
    2013-10-22 unins000.exe (51.1052.0.0)
    1999-12-02 xcacls.exe
    2012-08-23 borlndmm.dll (10.0.2288.42451)
    2012-09-05 DelZip190.dll (1.9.0.107)
    2012-09-10 libeay32.dll (1.0.0.4)
    2012-09-10 libssl32.dll (1.0.0.4)
    2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98)
    2013-05-16 SDAV.dll
    2013-05-16 SDECon32.dll (2.1.18.113)
    2013-05-16 SDECon64.dll (2.1.18.113)
    2013-04-05 SDEvents.dll (2.1.16.2)
    2013-10-14 SDFileScanLibrary.dll (2.2.25.14)
    2013-10-10 SDHook32.dll (2.3.30.2)
    2013-10-10 SDHook64.dll (2.3.30.2)
    2013-05-16 SDImmunizeLibrary.dll (2.1.18.2)
    2013-05-16 SDLicense.dll (2.1.18.0)
    2013-05-16 SDLists.dll (2.1.18.4)
    2013-05-16 SDResources.dll (2.1.18.7)
    2013-05-16 SDScanLibrary.dll (2.1.18.131)
    2013-05-16 SDTasks.dll (2.1.18.15)
    2013-05-16 SDWinLogon.dll (2.1.18.0)
    2012-08-23 sqlite3.dll
    2012-09-10 ssleay32.dll (1.0.0.4)
    2013-05-16 Tools.dll (2.1.18.36)
    2012-12-18 Includes\Adware.sbi (*)
    2013-10-08 Includes\AdwareC.sbi (*)
    2010-08-13 Includes\Cookies.sbi (*)
    2012-11-14 Includes\Dialer.sbi (*)
    2012-11-14 Includes\DialerC.sbi (*)
    2012-11-14 Includes\HeavyDuty.sbi (*)
    2012-11-14 Includes\Hijackers.sbi (*)
    2012-11-14 Includes\HijackersC.sbi (*)
    2013-10-16 Includes\iPhone.sbi (*)
    2013-06-25 Includes\Keyloggers.sbi (*)
    2012-12-18 Includes\KeyloggersC.sbi (*)
    2013-05-29 Includes\Malware.sbi (*)
    2013-10-01 Includes\MalwareC.sbi (*)
    2012-11-14 Includes\PUPS.sbi (*)
    2013-10-08 Includes\PUPSC.sbi (*)
    2012-11-14 Includes\Security.sbi (*)
    2012-11-14 Includes\SecurityC.sbi (*)
    2013-05-22 Includes\Spyware.sbi (*)
    2013-08-06 Includes\SpywareC.sbi (*)
    2011-06-07 Includes\Tracks.sbi (*)
    2012-11-19 Includes\Tracks.uti (*)
    2013-01-16 Includes\Trojans.sbi (*)
    2013-05-13 Includes\TrojansC-02.sbi (*)
    2013-10-01 Includes\TrojansC-03.sbi (*)
    2013-10-16 Includes\TrojansC-04.sbi (*)
    2013-05-08 Includes\TrojansC-05.sbi (*)
    2013-08-06 Includes\TrojansC.sbi (*)

    ___________________________________________

    // info: Rootkit removal help file
    // copyright: (c) 2008-2013 Safer-Networking Ltd. All rights reserved.

    :: RootAlyzer Results
    File:"Unknown ADS","C:\Users\Florenci\Documents\Scanned Documents\Digitalización de bienvenida.jpg:3or4kl4x13tuuug3Byamue2s4b:$DATA"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\CurrentControlS et\services\WdiSystemHost\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\CurrentControlS et\services\WdiServiceHost\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\CurrentControlS et\services\DPS\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\ControlSet002\s ervices\WdiSystemHost\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\ControlSet002\s ervices\WdiServiceHost\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\ControlSet002\s ervices\DPS\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\ControlSet001\s ervices\WdiSystemHost\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\ControlSet001\s ervices\WdiServiceHost\","Security"
    RegyKey:"No admin in ACL","HKEY_LOCAL_MACHINE","\SYSTEM\ControlSet001\s ervices\DPS\","Security"


    PD: I have Spybot Search and Destroy 2.2, what action I have to do to eliminate these "threats"?

  2. #2
    Junior Member
    Join Date
    Oct 2013
    Posts
    26

    Default

    anyone help?

  3. #3
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,460

    Default

    Hello Spybot_10,

    Not seeing anything remiss there.

    6. Removing the threats found

    Before you start to remove the found threats you should distinguish between usage tracks, cookies and real spyware/malware. The shown ‘Threat Level’ and ‘Type’ should help you here. If you choose to not fix a found item you just need to disable the checkbox in front of it. To finally fix the found threats please click on ‘Fix selected’.
    http://www.safer-networking.org/supp...teps-tutorial/

    Also, in general all items found by the RootAlyzer are not necessarily malicious. The RootAlyzer shows items which it believes to be out of the ordinary and is an analyst tool, not a scan and fix tool like the System or File Scan.

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  4. #4
    Junior Member
    Join Date
    Oct 2013
    Posts
    26

    Default

    Hi, thanks for answering!

    I have not looked if they are threats or not ... what I have done is to give the option Fix Selected, whenever I do an analysis with spybot search and destroy and I found threats or are not is to Fix Selected option, I have done well? Habre deleted something from my computer or the registry?

    no virus or something wrong with the reports I put in the post?, if they are like that I do not know and get back out on an analysis?

  5. #5
    Junior Member
    Join Date
    Oct 2013
    Posts
    26

    Default

    For serving the option in System Scan, Tracking Cookies?

  6. #6
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,460

    Default

    Hello,
    Quote Originally Posted by Spybot_10 View Post
    For serving the option in System Scan, Tracking Cookies?
    I'm not sure what you mean. How is the computer running in general, have you noticed any issues?

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  7. #7
    Junior Member
    Join Date
    Oct 2013
    Posts
    26

    Default

    I mean the option Tracking Cookies must be enabled or disabled? and I can reply to the message before

  8. #8
    Junior Member
    Join Date
    Oct 2013
    Posts
    26

    Default

    answer me this:

    Quote Originally Posted by Spybot_10 View Post
    Hi, thanks for answering!

    I have not looked if they are threats or not ... what I have done is to give the option Fix Selected, whenever I do an analysis with spybot search and destroy and I found threats or are not is to Fix Selected option, I have done well? Habre deleted something from my computer or the registry?

    no virus or something wrong with the reports I put in the post?, if they are like that I do not know and get back out on an analysis?

  9. #9
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,460

    Default

    Hello,

    Quote Originally Posted by Spybot_10 View Post
    answer me this:
    Quote Originally Posted by tashi View Post
    Not seeing anything remiss there.
    Quote Originally Posted by Spybot_10 View Post
    I mean the option Tracking Cookies must be enabled or disabled?
    That is user choice, myself I prefer to control cookies within the browser as cookies will return when one visits a site. Which browser do you use?

    Quote Originally Posted by tashi View Post
    How is the computer running in general, have you noticed any issues?
    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  10. #10
    Junior Member
    Join Date
    Oct 2013
    Posts
    26

    Default

    Still no answer to the answer #4 or if you've done do not understand

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •