Jump to content

PUP FPs?


Recommended Posts

Hope it is OK to post here, as I have posted on Wilders.

When I scan with MBAM Pro it always identifies some registry items as malware. A couple of months ago I quarantined several and W7 crashed a couple of times. When I restored those items all was well. Accordingly I have ignored all registry items in the scan.

A quick scan this AM showed two, one of which is listed here.
PUP.Optional...Registry Key HKCR\237FDFDB-3722-470E-88A

The other entry was similar.

I scan with my AV, currently Bit Defender IS, and nothing is found. I then wonder if MBAM has become too aggressive?

 

How do I send the entries to Support?


Thanks. Jerry

Link to post
Share on other sites

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.10.30.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Owner :: ARK1MGJ75Z4 [administrator]

Protection: Enabled

10/30/2013 10:26:23 AM
MBAM-log-2013-10-30 (11-21-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 248971
Time elapsed: 7 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCR\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB} (PUP.Optional.BabylonToolBar.A) -> No action taken.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

Thank you.

Jerry

Link to post
Share on other sites

Ok can now see what is occuring and thanks for providing the log.

https://www.google.co.uk/search?site=&source=hp&q={BDB69379-802F-4eaf-B541-F8DE92DD98DB}&oq={BDB69379-802F-4eaf-B541-F8DE92DD98DB}&gs_l=hp.12...1965.1965.0.3040.1.1.0.0.0.0.65.65.1.1.0....0...1c.2.30.hp..1.0.0._XO7-2YE7YY

The GUID is assoicated with Babyon ToolBar but looks to be cross plaform with other Conduit Toolbars.

 

Will fix this on the next update cycle.

 

Thanks for bringing this to our attention Jerry :)

Link to post
Share on other sites

Ok can now see what is occuring and thanks for providing the log.

https://www.google.co.uk/search?site=&source=hp&q={BDB69379-802F-4eaf-B541-F8DE92DD98DB}&oq={BDB69379-802F-4eaf-B541-F8DE92DD98DB}&gs_l=hp.12...1965.1965.0.3040.1.1.0.0.0.0.65.65.1.1.0....0...1c.2.30.hp..1.0.0._XO7-2YE7YY

The GUID is assoicated with Babyon ToolBar but looks to be cross plaform with other Conduit Toolbars.

 

Will fix this on the next update cycle.

 

Thanks for bringing this to our attention Jerry :)

 

Thank YOU for the help. I admit that I have little expertise with all this, and it is refreshing to get timely help as you have provided.

Best Regards,

Jerry

Link to post
Share on other sites

  • Root Admin

Yes you should be able to remove it.  The best way is if they have their own uninstaller from the Control Panel, Add\Remove.  Otherwise if you do have trouble removing it then you can follow the advice below and one of the trained Experts will assist you with cleaning your system.

 

I would suggest following the advice from the topic here if needed Available Assistance for Possibly Infected Computers and having one of the Experts assist you with looking into your issue.

Thanks

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.