Jump to content

Recommended Posts

Hello and :welcome: :

 

That detection is a PUP and your log shows that you did not select it for removal.

PUP = Potentially Unwanted Program

This KB topic explains what they are AND how to decide whether to delete them or keep/ignore them: What are the 'PUP' detections, are they threats and should they be deleted?

The default action for PUP detections is 'Show in results list and do not check for removal."

If you want Malwarebytes Anti-Malware to remove these PUP detections reported after a scan, each item must be checked.

  • To do so quickly, you can highlight one of the detections by left clicking on it.
  • Then, right click on the highlighted detection, and select 'Check All Items'.
  • Next, click 'Remove Selected'. That should address the PUP entries.

If you want to keep/ignore the PUP detections, because they are familiar to you and you use them, you can add them to the Ignore List.

If you want to edit the way PUP detections are reported and handled, you can edit the MBAM settings, as described below:

 

  • Open Malwarebytes Anti-Malware, click the 'Settings' tab.
  • Click the 'Scanner Settings' tab
  • Click the menu bar for each and select one of the following options: "Do not show results in list", "Show in results list and check for removal", or "Show in results list and do not check for removal".
  • When done, click the 'Exit' button

These are also explained in this recent blog post: http://blog.malwarebytes.org/news/2013/09/selecting-all-pups/

>>Having said all that, some PUPs can be quite hard to fully remove and may require additional tools.

So, for expert assistance, I would suggest that you please follow the recommendations in this pinned topic: Available Assistance For Possibly Infected Computers.

A malware analyst will guide you through the cleanup process.

Thanks,

daledoc1

Link to post
Share on other sites

Hi ajjax,

 

To add to daledoc1's post, a little about preventing PUP's.

 

Preventing a 'infection' with a pup mainly boils down to paying a lot of attention when installing and updating programs. When you download something from adobe (like reader and flash), make sure all 'optional offers' are unchecked. Other sites may use these tricks as well, so paying attention starts early. If you are using some download site, make sure it doesn't use a downloadwrapper, those are often crammed with PUP's. I believe cnet uses those, other site may do so as well. Download a program from the authors site if you can.

With the correct website and the unwanted offers unchecked you can download the installer. Run the installer and read every page of the installer closely. Often more PUP's are offered here and checked for installation by default. Uncheck them before proceeding. If you are really motivated, read the EULA to check for possible PUP's.

This should stop most PUP's from making it to you system, but only if you are the only user with administrator rights.

 

If there are more users on the computer with administrator rights and you are in the position to do so (morally), revoke the administrative rights of their accounts and make sure your account is password protected. This should stop the other users from installing PUP's. They are most likely not going to like you for doing this. Realize that if you do so, you are the only one who is able to update vulnerable software and install new software, this may cause your workload concerning the computer to increase.

 

To minimize the impact of PUP's, run a scan with MBAM after every install. Just to make sure nothing came through.

If you want to go even further, use MBAM PRO and make sure PUP's are set to 'show in result list and check for removal' and that the 'filesystem protection' is turned on with 'automaticly quarantine filesystem threats bedetcted by the protection module' checked . This will cause PUP's and installers containing PUP's to be deleted in no time. This can be annoying if you need to install a program who's installer always comes with a PUP, as the installation file will keep disappearing.

 

I hope this, in addition what Daledoc1 wrote, will answer you question and help you solve you PUP problem. If not or you have any questions left, please post & ask.

 

Link to post
Share on other sites

Hello,

 

delete in no time is working, mbam find the pup and delet it, but in order to do this job, it ask to reboot the system, and if i check again the system, mbam find again the same pup, it just mean that it find it, delete it, but don't kill the process, which duplicate constantly the pup, amazing isn't it ?

 

And now i have to add the fact, i have no more access to the admi. session, the pass word doesn't work anymore hum ?, this means, i'll have to erase the c: disk hum ? am i right hum, this is absolutly not funy Hum. 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.