VIRY.CZ

myslim, ze OK
doporucujem 1xmesacne kontrolu s MBAM

Dík za pomoc, vypadá to že je systém připojování prohlížeče po jeho náhradě za Firexox stabilizovaný.
Souhlasím s preventivní kontrolou MBAM.Tohle mě zase na chvíli vyškolilo.

Pak ještě napište, zda mbam něco našel.

Jo spolehněte se.
Díky

Dobrý večer plním svůj slib a špendlím zde log s MBAM, za měsíc počet havětí 27. Zatím jsem nemazal nic. Počítač je samozřejmě velmi zpomalen při načítání stránek ,ale připojení zatím najde.
Vřelé díly za odpověď co s tím.


Malwarebytes' Anti-Malware
www.malwarebytes.org

Database version:

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11.12.2011 20:31:08
mbam-log-2011-12-11 (20-30-52).txt

Scan type: Full scan (A:\|C:\|D:\|E:\|W:\|)
Objects scanned: 487857
Time elapsed: 9 hour(s), 44 minute(s), 3 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 5
Registry Values Infected: 3
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 19

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SETUP.EXE (Adware.DoubleD) -> No action taken.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> Value: {B922D405-6D13-4A2B-AE89-08A030DA4402} -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> Value: {B922D405-6D13-4A2B-AE89-08A030DA4402} -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\D:\PROGRAM FILES\COMMON FILES\SPIGOT\WTXPCOM\COMPONENTS\WIDGITOOLBARFF.DLL (Adware.WidgiToolbar) -> Value: WIDGITOOLBARFF.DLL -> No action taken.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
d:\program files\pdfforge toolbar\IE\4.8\pdfforgetoolbarie.dll (PUP.Dealio.TB) -> No action taken.
d:\program files\av video karaoke maker\dealiokit1-stub-0.exe (PUP.Dealio.TB) -> No action taken.
d:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll (Adware.WidgiToolbar) -> No action taken.
d:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.10 (Adware.WidgiToolbar) -> No action taken.
d:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.5 (Adware.WidgiToolbar) -> No action taken.
d:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.6 (Adware.WidgiToolbar) -> No action taken.
d:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.7 (Adware.WidgiToolbar) -> No action taken.
d:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.8 (Adware.WidgiToolbar) -> No action taken.
d:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.9 (Adware.WidgiToolbar) -> No action taken.
d:\Qoobox\quarantine\D\program files\internet saving optimizer\3.7.1.4630\npcommon.dll.vir (Adware.DoubleD) -> No action taken.
d:\Qoobox\quarantine\D\program files\internet saving optimizer\3.7.1.4630\npieaddon.dll.vir (Adware.DoubleD) -> No action taken.
d:\Qoobox\quarantine\D\program files\pdfforge toolbar\IE\1.1.2\pdfforgetoolbarie.dll.vir (PUP.Dealio.TB) -> No action taken.
d:\qoobox\quarantine\d\program files\system search dispatcher\1.4.1.1010\ssd.dll.vir (Adware.DoubleD.Gen) -> No action taken.
d:\WUTemp\WGASetup.exe (Hacktool.WPA) -> No action taken.
d:\documents and settings\all users.windows\data aplikací\{7fac77e1-454f-40cb-af3a-a465e4548ae6}\OFFLINE\CE8732D\3E688669\productinfo.dll (Adware.DoubleD) -> No action taken.
d:\documents and settings\all users.windows\data aplikací\{7fac77e1-454f-40cb-af3a-a465e4548ae6}\OFFLINE\EB91CE86\3E688669\stbdl.exe (Adware.DoubleD) -> No action taken.
d:\documents and settings\all users.windows\data aplikací\{7fac77e1-454f-40cb-af3a-a465e4548ae6}\OFFLINE\mfilebagide.dll\bag\productinfo.dll (Adware.DoubleD) -> No action taken.
d:\documents and settings\all users.windows\data aplikací\{7fac77e1-454f-40cb-af3a-a465e4548ae6}\OFFLINE\mfilebagide.dll\bag\setup.exe (Adware.DoubleD) -> No action taken.
d:\documents and settings\all users.windows\data aplikací\{7fac77e1-454f-40cb-af3a-a465e4548ae6}\OFFLINE\mfilebagide.dll\bag\stbrewlm.exe (Adware.DoubleD) -> No action taken.

Kolegove, omlouvam se za vstup, MBAM poresen zde http://www.viry.cz/forum/viewtopic.php?f=30&t=117744

A myslim ze i zde to muzem zamknout - d:\WUTemp\WGASetup.exe