Jump to content

PUP.Optional.Delta.A


HankJ
 Share

Recommended Posts

Welcome to the forum.....run these:

Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.

    Vista/Windows 7/8 users right-click and select Run As Administrator

  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • When it's done you'll see: Pending: Please uncheck elements you don't want removed.
  • Now click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • Look over the log especially under Files/Folders for any program you want to save.
  • If there's a program you want to save, just uncheck it from AdwCleaner.
  • If you're not sure, post the log for review.
  • If you're ready to clean it all up.....click the Clean button.
  • After rebooting, a logfile report (AdwCleaner[s0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • Items that are deleted are moved to the Quarantine Folder: C:\AdwCleaner\Quarantine
  • To restore an item that has been deleted:
  • Go to Tools > Quarantine Manager > check what you want restored > now click on Restore.
Then..................

Open up Malwarebytes > Settings Tab > Scanner Settings > Under action for PUP > Select Show in Results List and Check for removal.

Please Update and run a Quick Scan with Malwarebytes Anti-Malware, post the report.

Make sure that everything is checked, and click Remove Selected.

Please let me know how computer is running now, MrC

Link to post
Share on other sites

Hi Mr C

Thank you for your reply. Hope I've done this right.

# AdwCleaner v3.002 - Report created 05/09/2013 at 20:54:28 # Updated 01/09/2013 by Xplode # Operating System : Microsoft Windows XP Service Pack 3 (32 bits) # Username : Andrew - DBM0QN1J # Running from : C:\Documents and Settings\Andrew\Desktop\AdwCleaner.exe # Option : Clean   ***** [ Services ] *****     ***** [ Files / Folders ] *****   Folder Deleted : C:\Documents and Settings\NetworkService\Local Settings\Application Data\Vuze_Remote Folder Deleted : C:\Documents and Settings\Alison\Local Settings\Application Data\Conduit Folder Deleted : C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0c1jiou6.default\jetpack File Deleted : C:\Documents and Settings\Euan\Application Data\Mozilla\Firefox\Profiles\fbh3pf6x.default\.autoreg File Deleted : C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0c1jiou6.default\\invalidprefs.js File Deleted : C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0c1jiou6.default\bProtector_extensions.rdf File Deleted : C:\Program Files\Mozilla Firefox\Components\AskSearch.js File Deleted : C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0c1jiou6.default\searchplugins\Ask.xml File Deleted : C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0c1jiou6.default\searchplugins\Startsear.xml File Deleted : C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0c1jiou6.default\user.js File Deleted : C:\Documents and Settings\Alison\Application Data\Mozilla\Firefox\Profiles\3lhjsd80.default\user.js File Deleted : C:\Documents and Settings\Euan\Application Data\Mozilla\Firefox\Profiles\fbh3pf6x.default\user.js   ***** [ Shortcuts ] *****     ***** [ Registry ] *****   Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [Tubesaver@istqt.co] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com Key Deleted : HKCU\Toolbar Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1 Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1 Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E} Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD} Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091 Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6A87B991-A31F-4130-AE72-6D0C294BF082} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E908B145-C847-4E85-B315-07E2E70DECF8} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420} Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] Key Deleted : HKCU\Software\BabSolution Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\conduitEngine Key Deleted : HKCU\Software\Headlight Key Deleted : HKCU\Software\IGearSettings Key Deleted : HKCU\Software\StartSearch Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKCU\Software\AppDataLow\Software\TubeSaver Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\DataMngr Key Deleted : HKLM\Software\Dealio Key Deleted : HKLM\Software\MetaStream Key Deleted : HKLM\Software\OpenCandy Key Deleted : HKLM\Software\Viewpoint Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{6105648C-0C3C-481D-8C11-1F4952D6FB53} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Tubesaver@istqt.co Product Deleted : Google Update Helper   ***** [ Browsers ] *****   #NAME?   Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [bProtectTabs]   -\\ Mozilla Firefox v23.0.1 (en-US)   [ File : C:\Documents and Settings\Andrew\Application Data\Mozilla\Firefox\Profiles\0c1jiou6.default\prefs.js ]   Line Deleted : user_pref("CT2504091.CTID", "CT2504091"); Line Deleted : user_pref("CT2504091.CurrentServerDate", "7-4-2010"); Line Deleted : user_pref("CT2504091.DialogsAlignMode", "LTR"); Line Deleted : user_pref("CT2504091.EMailNotifierPollDate", "Wed Apr 07 2010 12:33:47 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.FeedLastCount129079840422964131", 10); Line Deleted : user_pref("CT2504091.FeedPollDate128891351169457132", "Wed Apr 07 2010 12:18:45 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.FeedPollDate129079840422964131", "Wed Apr 07 2010 11:18:45 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.FeedTTL128891351169457132", 40); Line Deleted : user_pref("CT2504091.FirstServerDate", "7-4-2010"); Line Deleted : user_pref("CT2504091.FirstTime", true); Line Deleted : user_pref("CT2504091.FirstTimeFF3", true); Line Deleted : user_pref("CT2504091.FixPageNotFoundErrors", true); Line Deleted : user_pref("CT2504091.GroupingServerCheckInterval", 1440); Line Deleted : user_pref("CT2504091.Initialize", true); Line Deleted : user_pref("CT2504091.InitializeCommonPrefs", true); Line Deleted : user_pref("CT2504091.InstalledDate", "Tue Apr 06 2010 22:55:33 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.IsGrouping", false); Line Deleted : user_pref("CT2504091.IsMulticommunity", false); Line Deleted : user_pref("CT2504091.IsOpenThankYouPage", false); Line Deleted : user_pref("CT2504091.IsOpenUninstallPage", false); Line Deleted : user_pref("CT2504091.LanguagePackLastCheckTime", "Tue Apr 06 2010 22:55:36 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.LanguagePackReloadIntervalMM", 1440); Line Deleted : user_pref("CT2504091.LastLogin_2.5.8.6", "Wed Apr 07 2010 11:18:46 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.LatestVersion", "2.1.0.18"); Line Deleted : user_pref("CT2504091.Locale", "en-us"); Line Deleted : user_pref("CT2504091.LoginCache", 4); Line Deleted : user_pref("CT2504091.MCDetectTooltipHeight", "83"); Line Deleted : user_pref("CT2504091.MCDetectTooltipWidth", "295"); Line Deleted : user_pref("CT2504091.SHRINK_TOOLBAR", 1); Line Deleted : user_pref("CT2504091.SearchFromAddressBarIsInit", true); Line Deleted : user_pref("CT2504091.SearchInNewTabEnabled", true); Line Deleted : user_pref("CT2504091.SearchInNewTabIntervalMM", 1440); Line Deleted : user_pref("CT2504091.SearchInNewTabLastCheckTime", "Tue Apr 06 2010 22:55:35 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.SettingsCheckIntervalMin", 120); Line Deleted : user_pref("CT2504091.SettingsLastCheckTime", "Wed Apr 07 2010 07:18:43 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.SettingsLastUpdate", "1265745383"); Line Deleted : user_pref("CT2504091.ThirdPartyComponentsInterval", 504); Line Deleted : user_pref("CT2504091.ThirdPartyComponentsLastCheck", "Tue Apr 06 2010 22:55:31 GMT+0100 (GMT Daylight Time)"); Line Deleted : user_pref("CT2504091.ThirdPartyComponentsLastUpdate", "1265745383"); Line Deleted : user_pref("CT2504091.UserID", "UN41331363603658333"); Line Deleted : user_pref("CT2504091.alertChannelId", "897164"); Line Deleted : user_pref("CT2504091.clientLogIsEnabled", true); Line Deleted : user_pref("CT2504091.myStuffEnabled", true); Line Deleted : user_pref("CT2504091.myStuffPublihserMinWidth", 400); Line Deleted : user_pref("CT2504091.myStuffServiceIntervalMM", 1440); Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2504091"); Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2504091"); Line Deleted : user_pref("browser.search.defaultengine", "Web Search"); Line Deleted : user_pref("extensions.delta.admin", false); Line Deleted : user_pref("extensions.delta.aflt", "babsst"); Line Deleted : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}"); Line Deleted : user_pref("extensions.delta.autoRvrt", "false"); Line Deleted : user_pref("extensions.delta.bbDpng", "20"); Line Deleted : user_pref("extensions.delta.cntry", "GB"); Line Deleted : user_pref("extensions.delta.dfltLng", "en"); Line Deleted : user_pref("extensions.delta.excTlbr", false); Line Deleted : user_pref("extensions.delta.ffxUnstlRst", true); Line Deleted : user_pref("extensions.delta.hdrMd5", "260604CEF53A4A96870FEDE42E873DCF"); Line Deleted : user_pref("extensions.delta.id", "30cb65ac0000000000000013728da5d8"); Line Deleted : user_pref("extensions.delta.instlDay", "15937"); Line Deleted : user_pref("extensions.delta.instlRef", "sst"); Line Deleted : user_pref("extensions.delta.lastVrsnTs", "1.8.24.612:22:05"); Line Deleted : user_pref("extensions.delta.newTab", false); Line Deleted : user_pref("extensions.delta.prdct", "delta"); Line Deleted : user_pref("extensions.delta.prtnrId", "delta"); Line Deleted : user_pref("extensions.delta.rvrt", "false"); Line Deleted : user_pref("extensions.delta.sg", "czb"); Line Deleted : user_pref("extensions.delta.smplGrp", "none"); Line Deleted : user_pref("extensions.delta.tlbrId", "base"); Line Deleted : user_pref("extensions.delta.tlbrSrchUrl", ""); Line Deleted : user_pref("extensions.delta.vrsn", "1.8.24.6"); Line Deleted : user_pref("extensions.delta.vrsnTs", "1.8.24.612:22:05"); Line Deleted : user_pref("extensions.delta.vrsni", "1.8.24.6"); Line Deleted : user_pref("extensions.delta_i.babExt", ""); Line Deleted : user_pref("extensions.delta_i.babTrack", "affID=120695&tsp=4980"); Line Deleted : user_pref("extensions.delta_i.srcExt", "ss"); Line Deleted : user_pref("extensions.enabledItems", "en-GB@dictionaries.addons.mozilla.org:1.19.1,{b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2,jqs@sun.com:1.0,{20a82645-c095-46ed-80e3-08825760534b}:0.0.0,en-US@dicti[...]   [ File : C:\Documents and Settings\Alison\Application Data\Mozilla\Firefox\Profiles\3lhjsd80.default\prefs.js ]   Line Deleted : user_pref("avg.install.installDirPath", "C:\\Documents and Settings\\All Users\\Application Data\\AVG Secure Search\\FireFoxExt\\14.2.0.1"); Line Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");   [ File : C:\Documents and Settings\Euan\Application Data\Mozilla\Firefox\Profiles\fbh3pf6x.default\prefs.js ]     *************************   AdwCleaner[R0].txt - [16879 octets] - [05/09/2013 20:51:03] AdwCleaner[s0].txt - [17077 octets] - [05/09/2013 20:54:28]   ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [17138 octets] ##########

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.09.05.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Andrew :: DBM0QN1J [administrator]

05/09/2013 21:00:42
mbam-log-2013-09-05 (21-00-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 263842
Time elapsed: 16 minute(s), 41 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

Second one looks okay?

 

Cheers

 

Hj

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.