Jump to content

Need help - PUP.Optional.Superfish.A Keeps ComingBack


jgt1942
 Share

Recommended Posts

I've noticed over the last several weeks PUP.Optional.Superfish.A Keeps ComingBack I also read the post at https://forums.malwarebytes.org/index.php?/topic/153291-pupoptionalsuperfisha-keeps-comingback/

 

downloaded Farbar Recovery Scan Tool and ran the scan

The three files created by the scan are attached.

  1. FRST.txt
  2. Addition.txt
  3. Shortcut.txt

Addition.txt

FRST.txt

Shortcut.txt

Link to post
Share on other sites

Welcome to the forum. (Do what you can)

General P2P/Piracy Warning:

 

1. If you're using Peer 2 Peer software such uTorrent, BitTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here.

2. If you have illegal/cracked software (MS Office, Adobe Products), cracks, keygens, custom (Adobe) host file, etc. on the system, please remove or uninstall them now and read the policy on Piracy.

Failure to remove such software will result in your topic being closed and no further assistance being provided.

Please run a Threat Scan with Malwarebytes

Start Malwarebytes 2.0..........

Click on Settings > Detection and Protection > Non-Malware Protection > PUP (Potentially Unwanted Program) detections > Make sure it's set to Treat detections as malware

Same for PUM (Potentially Unwanted Modifications)

Quarantine all that's found

Post the log (save the log as a .txt file not .xml)

Then......

Please download and run RogueKiller 32 bit to your desktop.

RogueKiller<---use this one for 64 bit systems

Which system am I using?

Quit all running programs.

For Windows XP, double-click to start.

For Vista or Windows 7-8, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

Wait for the Prescan to finish

Click Scan to scan the system.

When the scan completes > Don't Fix anything! > Click on the Report Button and post the Report back here.

Don't run any other options, they're not all bad!!!!!!!

RogueKiller logs will also be located here:

%programdata%/RogueKiller/Logs <-------W7

C:\Documents and Settings\All Users\Application Data\RogueKiller\Logs <-------XP

(please don't put logs in code or quotes and use the default font)

MrC

Note:

Please read all of my instructions completely including these.

Make sure system restore is turned on and running. Create a new restore point

Make sure you're subscribed to this topic: Click on the Follow This Topic Button (at the top right of this page), make sure that the Receive notification box is checked and that it is set to Instantly

Removing malware can be unpredictable...unlikely but things can go very wrong! Backup any files that cannot be replaced. You can copy them to a CD/DVD, external drive or a pen drive

<+>Please don't run any other scans, download, install or uninstall any programs while I'm working with you.

<+>The removal of malware isn't instantaneous, please be patient.

<+>When we are done, I'll give to instructions on how to cleanup all the tools and logs

<+>Please stick with me until I give you the "all clear".

------->Your topic will be closed if you haven't replied within 3 days!<--------

If I don't respond within 24 hours, please send me a PM

Link to post
Share on other sites

OK dummy me ran the scan on the wrong system. The new scan is attached (this time I ran it  on the correct system). I had loaned my laptop to a friend and several different people were working on it now I'm attempting to get back to normal and hopefully I will not have to rebuild the system from scratch by formatting the HD and reloading everything. 

Addition.txt

FRST.txt

W700 MalwareBytes Log.txt

Link to post
Share on other sites

Before running Rogue.exe I attempted to kill everything running in the foreground and background via the task manager. There were some items that I thought to be necessary but I'm not sure, I left these running. Following is the log.

 

It appears that I still have more clean up to perform regarding applications that were installed while the laptop was loaned out. I'm attempting to work on this but it will be a slow process for me.

 

RKreport_SCN_09172014_011357.log

Link to post
Share on other sites

¤¤¤ HOSTS File : 3 ¤¤¤

[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 lmlicenses.wip4.adobe.com

[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 lm.licenses.adobe.com

[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1 activate.adobe.com

General P2P/Piracy Warning:

 

1. If you're using Peer 2 Peer software such uTorrent, BitTorrent or similar you must either fully uninstall it or completely disable it from running while being assisted here.

2. If you have illegal/cracked software (MS Office, Adobe Products), cracks, keygens, custom (Adobe) host file, etc. on the system, please remove or uninstall them now and read the policy on Piracy.

Failure to remove such software will result in your topic being closed and no further assistance being provided.

Can you explain???? MrC

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.