Jump to content

Infections detected - Maleware or not?

Recommended Posts

Hi there,

I ran a Quick Scan with Malewarebytes (rather preventively than due to any special problems with the computer) and it found some infected data. I never know whether the infections found might be false positives (for example the PDF-Toolbar "infections"), so could someone please help me read the log below?

Should I delete all the infections Malewarebyte's found?

If so, is there anything else to do with the computer to get it cleaned up?

Thanks a lot in advance!


Malwarebytes' Anti-Malware


Datenbank Version: 7466

Windows 6.1.7601 Service Pack 1

Internet Explorer 9.0.8112.16421

14.08.2011 21:22:43

mbam-log-2011-08-14 (21-22-32).txt

Art des Suchlaufs: Quick-Scan

Durchsuchte Objekte: 168464

Laufzeit: 5 Minute(n), 21 Sekunde(n)

Infizierte Speicherprozesse: 0

Infizierte Speichermodule: 0

Infizierte Registrierungsschlüssel: 4

Infizierte Registrierungswerte: 2

Infizierte Dateiobjekte der Registrierung: 0

Infizierte Verzeichnisse: 0

Infizierte Dateien: 2

Infizierte Speicherprozesse:

(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:

(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:

HKEY_CLASSES_ROOT\CLSID\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> No action taken.

Infizierte Registrierungswerte:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> Value: {B922D405-6D13-4A2B-AE89-08A030DA4402} -> No action taken.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{B922D405-6D13-4A2B-AE89-08A030DA4402} (PUP.Dealio.TB) -> Value: {B922D405-6D13-4A2B-AE89-08A030DA4402} -> No action taken.

Infizierte Dateiobjekte der Registrierung:

(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:

(Keine bösartigen Objekte gefunden)

Infizierte Dateien:

c:\program files\pdfforge toolbar\IE\4.5\pdfforgetoolbarie.dll (PUP.Dealio.TB) -> No action taken.

c:\Users\delahun\AppData\Local\Temp\temp1_ups_document_nr4999.zip\ups_document\ups_document.exe (Spyware.Passwords.XGen) -> No action taken.

Link to post
Share on other sites

Wilkommen, Hilfesucher:

Not to worry - newcomers often post their malware questions in this General forum by mistake. :)

The mods/admins will close this thread, so it is not a problem.

While you are waiting for help in your other thread in the malware removal section, you might wish to please print out, read and follow the directions here, skipping any steps you are unable to complete.

Since you already started a new topic in the malware removal section, I would suggest that you wait to post your DDS logs in that thread until an expert helper has taken up your topic and asks for the logs. If you reply to your own thread now, it will increase the reply count from "0" and will look as if you are already being assisted -- the experts might overlook your topic.

Please be patient -- it may sometimes take 48 hours for a helper to become available, especially when the forum is busy.

Someone will help you as soon as possible.

Thanks for your patience and understanding,


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.