Malwarebytes Detected Some of my Registry Keys, What to do, Need some assistance.

etzio

New Member
Thread author
Apr 19, 2014
4
HI there! My problem is that, Malwarebytes detected some of my registry keys, Now i don't know what to do. (Delete or Ignore?) Need some assistance regarding this. Thank you.



Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Database version: v2014.04.25.11

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16659
etzioslick :: ETZIO [administrator]

Protection: Enabled

4/26/2014 1:35:57 PM
MBAM-log-2014-04-26 (14-59-39).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 243409
Time elapsed: 3 minute(s),

Memory Processes Detected: 3
C:\ProgramData\IePluginService\PluginService.exe (PUP.Optional.IePluginService.A) -> 1408 -> No action taken.
C:\ProgramData\WPM\wprotectmanager.exe (PUP.Optional.WpManager) -> 2140 -> No action taken.
C:\Users\etzioslick\AppData\Roaming\Search Protection\SearchProtection.exe (PUP.Optional.Spigot.A) -> 8560 -> No action taken.

Memory Modules Detected: 1
C:\Program Files (x86)\SupTab\DpInterface32.dll (PUP.Optional.SupTab.A) -> No action taken.

Registry Keys Detected: 17
HKLM\SYSTEM\CurrentControlSet\Services\IePluginService (PUP.Optional.IePluginService.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WPM (PUP.Optional.WpManager) -> No action taken.
HKCR\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> No action taken.
HKCR\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D} (PUP.Optional.SupTab.A) -> No action taken.
HKCR\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8} (PUP.Optional.SupTab.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} (PUP.Optional.SupTab.A) -> No action taken.
HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Optional.SoftwareUpdater) -> No action taken.
HKCR\Updater.AmiUpd.1 (PUP.Optional.SoftwareUpdater) -> No action taken.
HKCR\Updater.AmiUpd (PUP.Optional.SoftwareUpdater) -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> No action taken.
HKCU\Software\AppDataLow\Software\Search Protection (PUP.Optional.MyEmoticons.A) -> No action taken.
HKLM\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma (PUP.Optional.QuickStart.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> No action taken.
HKLM\Software\webssearchesSoftware (PUP.Optional.WebsSearches.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webssearches uninstaller (PUP.Optional.WebsSearches.A) -> No action taken.

Registry Values Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SearchProtection (PUP.Optional.Spigot.A) -> Data: "C:\Users\etzioslick\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart -> No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\Wpm|ImagePath (PUP.Optional.WpManager.A) -> Data: C:\ProgramData\WPM\wprotectmanager.exe -service -> No action taken.

Registry Data Items Detected: 3
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (PUP.Optional.SupTab.A) -> Bad: (C:\PROGRA~2\SupTab\SEARCH~1.DLL) Good: () -> No action taken.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command| (PUP.Optional.WebsSearches.A) -> Bad: (C:\Program Files\Internet Explorer\iexplore.exe http://istart.webssearches.com/?typ...amt&uid=ST1000LM024XHN-M101MBB_S31LJ9ADB09640) Good: (iexplore.exe) -> No action taken.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|DefaultScope (PUP.Optional.Qone8) -> Bad: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}) Good: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}) -> No action taken.

Folders Detected: 57
C:\Program Files (x86)\SupTab (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\en-US (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\es-419 (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\es-ES (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-BE (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-CA (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-CH (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-FR (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-LU (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\it-CH (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\it-IT (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\pl (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\pt (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\pt-BR (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\ru (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\ru-MO (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\tr-TR (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\vi-VI (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\zh-CN (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\zh-TW (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\YoutubeAdblocker (PUP.Optional.Multiplug) -> No action taken.
C:\ProgramData\IePluginService (PUP.Optional.IePluginService.A) -> No action taken.
C:\ProgramData\IePluginService\update (PUP.Optional.IePluginService.A) -> No action taken.
C:\ProgramData\YoutubeAdblocker (PUP.Optional.YoutubeAdblocker.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0 (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\en (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es_419 (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-BE (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CA (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CH (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-LU (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it-CH (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pl (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt_BR (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru-MO (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\tr (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\vi (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_CN (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_TW (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images (PUP.Optional.WebsSearches.A) -> No action taken.
C:\ProgramData\save net (PUP.Optional.MultiPlug.A) -> No action taken.
C:\Program Files (x86)\save net (PUP.Optional.MultiPlug.A) -> No action taken.

Files Detected: 168
C:\ProgramData\IePluginService\PluginService.exe (PUP.Optional.IePluginService.A) -> No action taken.
C:\ProgramData\WPM\wprotectmanager.exe (PUP.Optional.WpManager) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\Search Protection\SearchProtection.exe (PUP.Optional.Spigot.A) -> No action taken.
C:\Program Files (x86)\SupTab\SupTab.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\SupTab\SupTab.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx (PUP.Optional.QuickStart.A) -> No action taken.
C:\Program Files (x86)\SupTab\install.data (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\DpInterface32.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\DpInterface64.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\DpInterfacef32.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\ient.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\RSHP.exe (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\SearchProtect32.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\SearchProtect64.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\SpAPPSv32.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\SpAPPSv64.dll (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\uninstall.exe (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\data.html (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\indexIE.html (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\indexIE8.html (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\main.css (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\style.css (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\ver.txt (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\arrow.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\default_add_logo.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\default_add_logo_hover.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\default_logo.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\googlelogo.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\googlelogo2.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\google_trends.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\icon128.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\icon16.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\icon48.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\loading.gif (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\logo32.ico (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\0.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\1.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\10.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\11.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\12.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\13.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\14.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\15.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\16.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\17.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\18.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\19.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\2.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\20.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\21.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\22.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\23.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\24.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\25.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\26.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\27.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\28.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\29.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\3.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\30.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\31.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\32.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\33.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\34.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\35.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\36.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\37.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\38.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\39.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\4.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\40.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\41.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\42.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\43.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\44.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\45.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\46.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\47.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\5.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\6.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\7.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\8.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\img\weather\9.png (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\background.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\common.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\ga.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\ie8.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\jquery-1.11.0.min.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\jquery-base.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\jquery.autocomplete.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\js.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\library.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\js\xagainit.js (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\en-US\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\es-419\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\es-ES\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-BE\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-CA\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-CH\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-FR\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\fr-LU\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\it-CH\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\it-IT\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\pl\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\pt\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\pt-BR\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\ru\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\ru-MO\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\tr-TR\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\vi-VI\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\zh-CN\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Program Files (x86)\SupTab\web\_locales\zh-TW\messages.json (PUP.Optional.SupTab.A) -> No action taken.
C:\Windows\Tasks\amiupdxp.job (PUP.Software.Updater) -> No action taken.
C:\ProgramData\IePluginService\update\conf (PUP.Optional.IePluginService.A) -> No action taken.
C:\ProgramData\YoutubeAdblocker\5CYxUK.dat (PUP.Optional.YoutubeAdblocker.A) -> No action taken.
C:\ProgramData\YoutubeAdblocker\5cyxuk.exe.15029.gzquar (PUP.Optional.YoutubeAdblocker.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\background.html (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\index.html (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\manifest.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\style.css (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\default_logo.png (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\icon128.png (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\icon16.png (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\icon48.png (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\loading.gif (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\search.png (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.eot (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.svg (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.ttf (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\img\weather.woff (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\background.js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\ga.js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\inject.js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\jquery-base.js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\jquery.autocomplete.js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\js.js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\js\xagainit.js (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\en\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\es_419\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-BE\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CA\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-CH\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\fr-LU\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\it-CH\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pl\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\pt_BR\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\ru-MO\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\tr\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\vi\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_CN\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma\3.2.3_0\_locales\zh_TW\messages.json (PUP.Optional.QuickStart.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\92.json (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\uninstallDlg.xml (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\UninstallManager.exe (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images\bg1.png (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images\button1.png (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images\checked.png (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images\close.png (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images\min.png (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images\Thumbs.db (PUP.Optional.WebsSearches.A) -> No action taken.
C:\Users\etzioslick\AppData\Roaming\webssearches\images\unchecked.png (PUP.Optional.WebsSearches.A) -> No action taken.
C:\ProgramData\save net\CU8w2Z.dat (PUP.Optional.MultiPlug.A) -> No action taken.
C:\ProgramData\save net\cu8w2z.exe.15022.gzquar (PUP.Optional.MultiPlug.A) -> No action taken.

(end)
 

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Re-run MalwareBytes, but now delete all keys that were found.



***** NEXT *****



Please download AdwCleaner by Xplode and save to your Desktop.

Double click on AdwCleaner.exe to run the tool.
  • Click on the Scan button.
  • After the scan has finished click on the Clean button.

Press OK when asked to close all programs and follow the onscreen prompts.
Press OK again to allow AdwCleaner to restart the computer and complete the removal process.

  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Post logfile will also be saved in the C:\AdwCleaner folder.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top