Author Topic: I got so many spyware items from malware bytes & spybot  (Read 1322 times)

0 Members and 1 Guest are viewing this topic.

Offline johnson55

  • Full Member
  • ***
  • Posts: 142
    • View Profile
I got so many spyware items from malware bytes & spybot
« on: September 05, 2013, 03:37:19 AM »
I got about 155 entries of spyware the last time I used spybot & malware bytes.I never got that many
before.Maybe I'm doing something wrong.I use them almost every day.So they haven't added up over
a period of time. Here is a couple logs

Babylon.Toolbar: [SBI $DEB52F26] Program directory (Directory, fixed)
  C:\ProgramData\Babylon\

Delta.Toolbar: [SBI $85F92549] User settings (Registry key, fixed)
  HKEY_USERS\S-1-5-21-1866074403-788936854-74266964-1000\Software\BabSolution

Delta.Toolbar: [SBI $15E43F9C] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SOFTWARE\DataMngr

Delta.Toolbar: [SBI $4FE1D2EF] User settings (Registry key, fixed)
  HKEY_USERS\S-1-5-21-1866074403-788936854-74266964-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

Delta.Toolbar: [SBI $72F3A704] User settings (Registry key, fixed)
  HKEY_USERS\S-1-5-21-1866074403-788936854-74266964-1000\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings

Delta.Toolbar: [SBI $1E0125E9] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SOFTWARE\Delta

Delta.Toolbar: [SBI $04AEAE14] User settings (Registry value, fixed)
  HKEY_USERS\S-1-5-21-1866074403-788936854-74266964-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\bProtectNewTabPageShow

Delta.Toolbar: [SBI $0760E887] User settings (Registry value, fixed)
  HKEY_USERS\S-1-5-21-1866074403-788936854-74266964-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\bProtectShowTabsWelcome

Delta.Toolbar: [SBI $BAD3A52C]  Data (File, fixed)
  C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\bProtector_extensions.sqlite
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

Delta.Toolbar: [SBI $3349937E]  Data (File, fixed)
  C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

Delta.Toolbar: [SBI $8D5613B6]  Data (File, fixed)
  C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\bProtectorPreferences
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

Delta.Toolbar: [SBI $056935A6] Program directory (Directory, fixed)
  C:\ProgramData\BrowserDefender\

Delta.Toolbar: [SBI $B75BAE88] Program directory (Directory, fixed)
  C:\Users\jacobi678\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender\

Delta.Toolbar: [SBI $0FBC718D]  Link (File, fixed)
  C:\Users\jacobi678\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender\Uninstall BrowserDefender.lnk
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

Delta.Toolbar: [SBI $B56D4C67]  Data (File, fixed)
  C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

Delta.Toolbar: [SBI $507DAF9A]  Configuration file (File, fixed)
  C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\Preferences
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

Delta.Toolbar: [SBI $E4215EF7] Program directory (Directory, fixed)
  C:\Program Files (x86)\Delta\

Delta.Toolbar: [SBI $1A192719]  Data (File, fixed)
  C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\extensions\ffxtlbr@delta.com\chrome.manifest
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

Delta.Toolbar: [SBI $A5B26142] Program directory (Directory, fixed)
  C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\extensions\ffxtlbr@delta.com\

Delta.Toolbar: [SBI $A8F2E571] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{1231839B-064E-4788-B865-465A1B5266FD}

Delta.Toolbar: [SBI $B94DB361] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}

Delta.Toolbar: [SBI $B94DB361] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}

Delta.Toolbar: [SBI $38314496] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}

Delta.Toolbar: [SBI $38314496] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}

Delta.Toolbar: [SBI $F02AE169] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}

Delta.Toolbar: [SBI $F02AE169] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}

Delta.Toolbar: [SBI $1E2D67AE] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}

Delta.Toolbar: [SBI $1E2D67AE] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}

Delta.Toolbar: [SBI $3964C2F3] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{57C91446-8D81-4156-A70E-624551442DE9}

Delta.Toolbar: [SBI $3964C2F3] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{57C91446-8D81-4156-A70E-624551442DE9}

Delta.Toolbar: [SBI $D64237C1] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}

Delta.Toolbar: [SBI $D64237C1] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}

Delta.Toolbar: [SBI $22734609] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}

Delta.Toolbar: [SBI $22734609] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}

Delta.Toolbar: [SBI $C44203A1] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}

Delta.Toolbar: [SBI $C44203A1] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}

Delta.Toolbar: [SBI $D31153C0] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}

Delta.Toolbar: [SBI $D31153C0] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}

Delta.Toolbar: [SBI $CA2988C7] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}

Delta.Toolbar: [SBI $CA2988C7] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}

Delta.Toolbar: [SBI $2676D9B7] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}

Delta.Toolbar: [SBI $2676D9B7] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}

Montera.Toolbar: [SBI $C595B0E4] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Montera.Toolbar: [SBI $C595B0E4] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Montera.Toolbar: [SBI $2212EF94] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\AppID\escort.DLL

Montera.Toolbar: [SBI $2212EF94] Settings (Registry key, fixed)
  HKEY_CLASSES_ROOT\AppID\escort.DLL

myPCBackup: [SBI $0A7CBF44]  Link (File, fixed)
  C:\Users\jacobi678\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $C82B6A5E] Program directory (Directory, fixed)
  C:\Users\jacobi678\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup\

myPCBackup: [SBI $34F588C1]  Link (File, fixed)
  C:\Users\jacobi678\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup\MyPC Backup.lnk
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $F9F3115A]  Link (File, fixed)
  C:\Users\jacobi678\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup\Uninstall.lnk
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $BE3057E0] Program directory (Directory, fixed)
  C:\Program Files (x86)\MyPC Backup\

myPCBackup: [SBI $6F31F5C9]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\aff.conf
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $445132DE]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\AlphaVSS.51.x86.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $445132DE]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\AlphaVSS.52.x64.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $445132DE]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\AlphaVSS.52.x86.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $445132DE]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\AlphaVSS.60.x64.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $445132DE]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\AlphaVSS.60.x86.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $445132DE]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\AlphaVSS.Common.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $674FDE54]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\AWSSDK.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $5DA0D8C9]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\BackupStack.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $D08A38C9]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Crypto32.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $54EBF473]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Crypto64.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $81109B34]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\de_DE.mo
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $9ED2A91F]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\diffstack.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $0843065C]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\es_ES.mo
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $46906119]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\fr_FR.mo
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $8597AA1D]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\GetText.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $2150E03A]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\it_IT.mo
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $9A779B05]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\LogicNP.EZShellExtensions.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $E321D474]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\MPCBClient.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $C75C2C05]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\MPCBContextMenu.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $C211D411]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\MPCBIconOverlays.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $EACDF0D4]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $786C1C6B]  Picture (File, fixed)
  C:\Program Files (x86)\MyPC Backup\mypcbackup.ico
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $05EA4743]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\pt_PT.mo
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $2EC9BFCC]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\RegisterExtensionDotNet20_x64.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $333E659A]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\RegisterExtensionDotNet20_x86.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $B17A7DAE]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\RestartExplorer.exe
spybot search& destroy
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $E5C0D050]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Service Start.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $5134AB51]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Shared Stack.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $E9DB237C]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $7316F54C]  Picture (File, fixed)
  C:\Program Files (x86)\MyPC Backup\syncicon.ico
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $BF729314]  Picture (File, fixed)
  C:\Program Files (x86)\MyPC Backup\syncing.ico
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $7DC75AFA]  Picture (File, fixed)
  C:\Program Files (x86)\MyPC Backup\tick.ico
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $1741528F]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\uninst.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $22288072]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\UnRegisterExtensions.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $223258CA]  Executable (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Updater.exe
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $5C7A6B4B] Program directory (Directory, fixed)
  C:\Program Files (x86)\MyPC Backup\Database\

myPCBackup: [SBI $AD6AB843]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Database\mpcb_backup_conf.db
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $559CAEF6]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Database\mpcb_file_cache.db
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $B1463116]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Database\mpcb_queues.db
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $1D0A14D4]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $FD4C0913]  Data (File, fixed)
  C:\Program Files (x86)\MyPC Backup\Database\mpcb_sig_cache.db
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $CB92F385] Program directory (Directory, fixed)
  C:\Program Files (x86)\MyPC Backup\x64\

myPCBackup: [SBI $11D6CBF6]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $F33ABC0D] Program directory (Directory, fixed)
  C:\Program Files (x86)\MyPC Backup\x86\

myPCBackup: [SBI $EB471DA6]  Library (File, fixed)
  C:\Program Files (x86)\MyPC Backup\x86\System.Data.SQLite.dll
  Properties.size=0
  Properties.md5=D41D8CD98F00B204E9800998ECF8427E

myPCBackup: [SBI $8711CE39] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MyPC Backup

myPCBackup: [SBI $8711CE39] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MyPC Backup

myPCBackup: [SBI $5568234B] Uninstall settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup

myPCBackup: [SBI $E5A9F541] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BackupStack

myPCBackup: [SBI $E5A9F541] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BackupStack

myPCBackup: [SBI $657AD0CF] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BackupStack

myPCBackup: [SBI $657AD0CF] Settings (Registry key, fixed)
  HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BackupStack


--- Spybot - Search & Destroy version: 1.6.2  (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SDWinSec.exe (1.0.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-03-05 TeaTimer.exe (1.6.6.32)
2012-08-27 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-11-04 advcheck.dll (1.6.5.20)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2013-04-11 Includes\Adware.sbi (*)
2013-08-28 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2012-11-14 Includes\Dialer.sbi (*)
2013-04-11 Includes\DialerC.sbi (*)
2013-04-11 Includes\HeavyDuty.sbi (*)
2012-11-14 Includes\Hijackers.sbi (*)
2013-04-11 Includes\HijackersC.sbi (*)
2013-08-21 Includes\iPhone.sbi (*)
2013-06-25 Includes\Keyloggers.sbi (*)
2013-04-11 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2013-05-29 Includes\Malware.sbi (*)
2013-08-28 Includes\MalwareC.sbi (*)
2012-11-14 Includes\PUPS.sbi (*)
2013-08-06 Includes\PUPSC.sbi (*)
2010-01-25 Includes\Revision.sbi (*)
2012-11-14 Includes\Security.sbi (*)
2013-04-11 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2013-05-22 Includes\Spyware.sbi (*)
2013-08-06 Includes\SpywareC.sbi (*)
2012-11-19 Includes\Tracks.uti
2013-01-16 Includes\Trojans.sbi (*)
2013-08-13 Includes\TrojansC-02.sbi (*)
2013-08-27 Includes\TrojansC-03.sbi (*)
2013-08-28 Includes\TrojansC-04.sbi (*)
2013-06-13 Includes\TrojansC-05.sbi (*)
2013-08-06 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll


Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.09.03.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
jacobi678 :: NEWBUILD2 [administrator]

9/3/2013 3:34:22 Eystad
mbam-log-2013-09-03 (15-34-22).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 398508
Time elapsed: 37 minute(s), 51 second(s)

Memory Processes Detected: 3
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe (PUP.Optional.BrowserProtect.A) -> 3372 -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe (PUP.Optional.BrowserProtect.A) -> 4344 -> Delete on reboot.
C:\Program Files (x86)\SaltarSmart\updateSaltarSmart.exe (PUP.Optional.SaltarSmart.A) -> 4004 -> Delete on reboot.

Memory Modules Detected: 2
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\enhancedNT.dll (PUP.Optional.A.BabSolution) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.dll (PUP.Optional.BrowserDefender.A) -> Delete on reboot.

Registry Keys Detected: 56
HKCR\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\escort.escortIEPane.1 (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\escort.escortIEPane (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\delta.deltaHlpr.1 (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\delta.deltaHlpr (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\CLSID\{d99a4ec9-00bd-4fe4-85a5-4db018351265} (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{4f0c4513-1dcb-4975-b4f0-f98c18e17265} (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
HKCR\Interface\{5B725BC8-C263-4783-BE79-D3A812FBB42B} (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D99A4EC9-00BD-4FE4-85A5-4DB018351265} (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
HKCR\AppID\{38495740-0035-4471-851E-F5BBB86AB085} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCR\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} (PUP.Optional.BrowseFox.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\esrv.deltaESrvc.1 (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\esrv.deltaESrvc (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKCR\delta.deltadskBnd.1 (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKCR\delta.deltadskBnd (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{A1E28287-1A31-4b0f-8D05-AA8C465D3C5A} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCR\DefaultTabBHO.DefaultTabBrowserActiveX.1 (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCR\DefaultTabBHO.DefaultTabBrowserActiveX (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCR\Typelib\{4599D05A-D545-4069-BB42-5895B4EAE05B} (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKCR\Interface\{1231839B-064E-4788-B865-465A1B5266FD} (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85} (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2D33ED6-EBBD-467C-BF6F-F175D9B51363} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAD84EE2-624D-4e7c-A8BB-41EFD720FD77} (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\delta.deltaappCore.1 (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\delta.deltaappCore (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B} (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCR\d (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} (PUP.Optional.BrowserProtect.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\Update SaltarSmart (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
HKCR\AppID\DefaultTabBHO.DLL (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\DEFAULT TAB (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\DELTA\DELTA (PUP.Optional.Delta) -> Quarantined and deleted successfully.
HKCU\Software\DataMngr (PUP.Optional.DataMngr) -> Quarantined and deleted successfully.
HKCU\Software\SaltarSmart (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
HKCU\Software\AppDataLow\Software\DefaultTab (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKCU\Software\BabSolution\Redir (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\DEFAULT TAB (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\delta (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.

Registry Values Detected: 8
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Data: Delta Toolbar -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Data:  -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Default Tab|Version (PUP.Optional.DefaultTab.A) -> Data: 2.2.8.0 -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Delta\Delta|tlbrSrchUrl (PUP.Optional.Delta) -> Data:  -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|bProtector Start Page (PUP.BProtector) -> Data: http://www2.delta-search.com/?babsrc=HP_ss&mntrId=0A023860779EC705&affID=120526&tsp=4992 -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|bProtectorDefaultScope (PUP.BProtector) -> Data: {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} -> Quarantined and deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|NTRedirect (PUP.Optional.A.BabSolution) -> Data: C:\Windows\SysWOW64\rundll32.exe "C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Default Tab|Version (PUP.Optional.DefaultTab.A) -> Data: 2.2.8.0 -> Quarantined and deleted successfully.

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs (PUP.Optional.BrowserDefender.A) -> Bad: (c:\progra~3\browse~1\261562~1.220\{c16c1~1\browse~1.dll) Good: () -> Quarantined and repaired successfully.

Folders Detected: 12
C:\Users\jacobi678\AppData\Roaming\DefaultTab\DefaultTab (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\Delta (PUP.Optional.Delta) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart (PUP.Optional.SaltarSmart.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8} (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\FirefoxExtension (PUP.Optional.BrowserDefender.A) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\Users\jacobi678\AppData\Roaming\BabSolution (PUP.Optional.BabSolution.A) -> Delete on reboot.
C:\Users\jacobi678\AppData\Roaming\BabSolution\CR (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared (PUP.Optional.BabSolution.A) -> Delete on reboot.
C:\Program Files (x86)\Delta\delta\1.8.24.6 (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Delta\delta\1.8.24.6\bh (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.

Files Detected: 51
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe (PUP.Optional.BrowserProtect.A) -> Delete on reboot.
C:\Program Files (x86)\Delta\delta\1.8.24.6\bh\delta.dll (PUP.Optional.Delta) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\SaltarSmartBHO.dll (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Delta\delta\1.8.24.6\deltasrv.exe (PUP.Optional.Delta) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaTlbr.dll (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
C:\Downloads\quicktime.exe (PUP.Optional.BundleInstaller.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaApp.dll (PUP.Optional.Delta) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Delta\delta\1.8.24.6\deltaEng.dll (PUP.Optional.Delta) -> Quarantined and deleted successfully.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\uninstall.exe (PUP.Optional.BrowserProtect.A) -> Delete on reboot.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\BabMaint.exe (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.cfg (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\DefaultTab\DefaultTab\addon.ico (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabUninstaller.exe (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\DefaultTab\DefaultTab\DT.ico (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\DefaultTab\DefaultTab\searchhere.ico (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\DefaultTab\DefaultTab\uninstalldt.exe (PUP.Optional.DefaultTab.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\Delta\sqlite3.dll (PUP.Optional.Delta) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\updateSaltarSmart.InstallState (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\chdboodilddefglllfoimeceomkpmkbi.crx (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\Microsoft.Win32.TaskScheduler.dll (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\SaltarSmart.Common.dll (PUP.Optional.SaltarSmart.A) -> Delete on reboot.
C:\Program Files (x86)\SaltarSmart\SaltarSmart.ico (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\SaltarSmartUninstall.exe (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\sqlite3.exe (PUP.Optional.SaltarSmart.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\SaltarSmart\updateSaltarSmart.exe (PUP.Optional.SaltarSmart.A) -> Delete on reboot.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\enhancedNT.dll (PUP.Optional.A.BabSolution) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\bl (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.dll (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.settings (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\dm (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\00 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\01 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\02 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\03 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\10 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\11 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\12 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\13 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\20 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\21 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\22 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\ProgramData\BrowserDefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\traking_settings\23 (PUP.Optional.BrowserDefender.A) -> Delete on reboot.
C:\Users\jacobi678\AppData\Roaming\BabSolution\CR\Delta.crx (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\BUSolution.dll (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\chu.js (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\Delta.ico (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\GUninstaller.exe (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\SetupParams.ini (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Users\jacobi678\AppData\Roaming\BabSolution\Shared\sqlite3.dll (PUP.Optional.BabSolution.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Delta\delta\1.8.24.6\GUninstaller.exe (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Delta\delta\1.8.24.6\uninstall.exe (PUP.Optional.Delta.A) -> Quarantined and deleted successfully.

(end)

Offline MikeW

  • LzD Friends
  • Sr. Member
  • *****
  • Posts: 272
    • View Profile
Re: I got so many spyware items from malware bytes & spybot
« Reply #1 on: September 05, 2013, 11:54:02 AM »
Hi Johnson55
Those detections are not spyware, but more accurately PUP's (potentially unwanted programs). These are often bundled with other downloaded software. See a more in depth explanation here

  http://forums.malwarebytes.org/index.php?showtopic=130156
Win 7 Home Premium  IE11 MSE Mbam Pro

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 14431
  • "Stronger than the past, united in our goal."
    • View Profile
    • Security Garden
Re: I got so many spyware items from malware bytes & spybot
« Reply #2 on: September 05, 2013, 04:01:36 PM »
Hi, Johnson55.

Although PUPs, many of the detections are undesirable PUPs!  For example, see this writeup about BrowserDefender, which explains that its purpose is to prevent removal of bundled programs.  Note also that it runs with full administrator privileges!  BrowserDefender by Bit89 Inc - Should I Remove It?

Both the Babylon and Delta toolbars are adware that come bundled with various third-party software.  They reset the start and search pages from your choice to theirs.

If you would like to ensure they are completely gone, please do the following:

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click AdwCleaner.exe to run the tool.
    Note:  Windows Vista, Windows 7/8 users right-click and select Run As Administrator.
  • Click the Scan button.
  • AdwCleaner will begin.  Be patient as the scan may take some time to complete.
  • After the scan has finished, click the Report button.  A logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The  contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you  see an entry you want to keep, please let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline johnson55

  • Full Member
  • ***
  • Posts: 142
    • View Profile
Re: I got so many spyware items from malware bytes & spybot
« Reply #3 on: September 07, 2013, 04:11:29 PM »
Thanks for both of your input.It helps to find out that they're not really a spyware but a nusance.
I'll send along a log of adwcleaner.I didn't use  the tool hosts antipup/adware.Would that be a good thing and how do you get it if I want it?

# AdwCleaner v3.003 - Report created 07/09/2013 at 11:29:11
# Updated 07/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : jacobi678 - NEWBUILD2
# Running from : C:\Users\jacobi678\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

  • Not Deleted : BrowserDefendert


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\InfoAtoms
Folder Deleted : C:\Program Files (x86)\MixiDJ_V30
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\jacobi678\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\jacobi678\AppData\Local\cre
Folder Deleted : C:\Users\jacobi678\AppData\Local\DefineExt
Folder Deleted : C:\Users\jacobi678\AppData\Local\Zoom_Downloader
Folder Deleted : C:\Users\jacobi678\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\jacobi678\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\jacobi678\AppData\LocalLow\delta
Folder Deleted : C:\Users\jacobi678\AppData\LocalLow\MixiDJ_V30
Folder Deleted : C:\Users\jacobi678\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\DefaultTab
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Yontoo
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\blekkotb
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\Smartbar
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\CT3298566
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\CT3287375
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\Extensions\{1122b43d-30ee-403f-9bfa-3cc99b0caddd}
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\infoatoms@infoatoms.com
Folder Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\Extensions\{6c3bc03f-d7b9-43ac-8931-c242e3cae971}
Folder Deleted : C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjkpcnacdgdlpfejlgflolpaigoicibh
Folder Deleted : C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhbgpoakplhahbklhkcfbpicgjcaoglk
Folder Deleted : C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
File Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\Extensions\addon@defaulttab.com.xpi
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\searchplugins\search.xml
File Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\searchplugins\search-here.xml
File Deleted : C:\Users\jacobi678\AppData\Roaming\Mozilla\Firefox\Profiles\azgatbp3.default\user.js
File Deleted : C:\Users\jacobi678\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
File Deleted : C:\Windows\System32\Tasks\BrowserDefendert
File Deleted : C:\Windows\System32\Tasks\EPUpdater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [infoatoms@infoatoms.com]
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hhbgpoakplhahbklhkcfbpicgjcaoglk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\wajam.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\softonic_ggl_1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\softonic_ggl_1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKCU\Software\5b57dedbb63aeb40
Key Deleted : HKLM\SOFTWARE\5b57dedbb63aeb40
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3298566
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_avg-anti-rootkit_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_avg-anti-rootkit_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_belarc-advisor_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_belarc-advisor_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_windirstat_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_windirstat_RASMANCS
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ConduitFloatingPlugin_fdkednngfjmpnljkolbapdednncafhen]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1122B43D-30EE-403F-9BFA-3CC99B0CADDD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26C9E18C-3717-4BE1-A225-04E4471F5B6E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DAA6D527-6513-453E-A4E6-DA2BFA6C7A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1122B43D-30EE-403F-9BFA-3CC99B0CADDD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1122B43D-30EE-403F-9BFA-3CC99B0CADDD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B78F92C8-DEB3-11E2-9A0A-FB64281D6ADE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DAA6D527-6513-453E-A4E6-DA2BFA6C7A75}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{00F12770-E60E-4DC6-9105-425BFACE7C73}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E309EFFC-D014-4FD0-85A2-2A7A6FBEC31C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9265BF06-A62A-4391-AF45-91287941633E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{1122B43D-30EE-403F-9BFA-3CC99B0CADDD}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1122B43D-30EE-403F-9BFA-3CC99B0CADDD}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{1122B43D-30EE-403F-9BFA-3CC99B0CADDD}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DefaultTab
Key Deleted : HKCU\Software\Delta
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\SearchProtect
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\MixiDJ_V30
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DefaultTab
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\InfoAtoms
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\MixiDJ_V30
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\blekkotb
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InfoAtoms
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MixiDJ_V30 Toolbar
Key Deleted : [x64] HKLM\SOFTWARE\DomaIQ

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v23.0.1 (en-US)

*************************

AdwCleaner[R0].txt - [23731 octets] - [07/09/2013 11:26:24]
AdwCleaner[S0].txt - [22638 octets] - [07/09/2013 11:29:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [22699 octets] ##########

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 14431
  • "Stronger than the past, united in our goal."
    • View Profile
    • Security Garden
Re: I got so many spyware items from malware bytes & spybot
« Reply #4 on: September 07, 2013, 10:34:41 PM »
Hi, Johnson55.

Let's run one more tool.  Please download Junkware Removal Tool to your desktop.
  • Disable your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it.  If you are using Windows Vista or Seven, right-mouse click it and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline johnson55

  • Full Member
  • ***
  • Posts: 142
    • View Profile
Re: I got so many spyware items from malware bytes & spybot
« Reply #5 on: September 08, 2013, 03:53:03 PM »
Here is my jrt.txt
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.9 (09.07.2013:1)
OS: Windows 7 Home Premium x64
Ran by jacobi678 on Sun 09/08/2013 at 11:41:58.35
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] browserdefendert
Successfully deleted: [Service] browserdefendert
Successfully stopped: [Service] suite service
Successfully deleted: [Service] suite service



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1866074403-788936854-74266964-1000\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\PricePeepInstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\PricePeepInstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\PricePeepInstaller_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\PricePeepInstaller_RASMANCS
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{008AAB79-A74A-4095-8404-4E61D6B84B86}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{64FD455F-7F77-7952-06EB-7F0374E53D18}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AAED0B0E-16F4-4BEB-B27E-C963F5C20E4E}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AC4047EA-BE4D-41EB-B311-7892BF094AC5}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{AAED0B0E-16F4-4BEB-B27E-C963F5C20E4E}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\fighters"
Successfully deleted: [Folder] "C:\Users\jacobi678\AppData\Roaming\fighters"
Successfully deleted: [Folder] "C:\Users\jacobi678\AppData\Roaming\strongvault"
Successfully deleted: [Folder] "C:\Users\jacobi678\appdata\locallow\radiorage_4jei"
Successfully deleted: [Folder] "C:\Program Files (x86)\bucksbee loyalty plugin - 100815"
Successfully deleted: [Folder] "C:\Program Files (x86)\fighters"
Successfully deleted: [Folder] "C:\Program Files (x86)\fileopenerpro"
Successfully deleted: [Folder] "C:\Program Files (x86)\radiorage_4jei"
Successfully deleted: [Folder] "C:\ai_recyclebin"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{00061BA3-CA99-4120-BC7A-0BD3CD1751DB}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{006058EE-FE23-4EBA-8741-0A961421D56E}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{0113F843-E1D2-4F8E-9430-B2D69BEE33F7}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{10466BD9-5035-4F65-8A21-73E182B7FE20}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{10B5F389-0E86-4154-A25F-88D0533484CC}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{1DEEAA92-047C-490A-AB30-959375D9E464}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{2A1E3B66-2D22-4BD7-86C9-99ECB43A72B7}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{2B12F01F-3459-42E0-AFE5-1D5E69451378}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{2BF3CC1C-8DE3-4681-AAA0-010F84B6E306}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{2E6EEF34-3800-4945-BCC8-E3FC4BEA1C8E}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{304CD17E-F2E7-4DDE-BEA2-DF23B1753704}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{35130895-050A-4198-BDDD-8B4532B1DFF2}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{353CFD50-4B35-4790-9EEC-3DF5A0D805D3}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{3685FC27-5F59-4417-A4E2-3CF34E5D6DDC}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{379A136E-3DC2-411F-B697-D330095FA88B}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{3DE2FF43-D27D-4FED-9CF1-44972FCB874D}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{44C6D35A-46BB-4927-A3D2-B808E4669816}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{45E0DEEE-46CA-40BD-BB07-D99E9869D669}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{4619DDD1-3160-42DF-9A90-C7A351C6A51D}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{46A05573-F0F1-496B-B845-4F2EE6668B3D}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{4C29771A-86C9-4518-A1B9-BE3A91DAF07A}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{515FDBF1-0C4F-4ABF-86F8-77AF4EBE8119}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{5C161186-95FB-47E1-BA4D-EF80221F3AE4}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{638607CD-B0A3-455D-A1B1-178876E5423E}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{63B5921A-BC61-4F84-9CC4-E527EF358730}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{6703627A-68F7-41AC-9CD7-56A6F443E9B8}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{680DA61D-497A-4444-AC01-3763F5A9B106}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{68EC945A-6D4A-4B8D-8598-5C1D43CB68EF}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{6DCCF886-B490-43D5-B447-26195C1E91F7}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{7F5F2D3E-7BD2-48F2-963B-3C1E232D5D25}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{8048C8AA-28B0-408A-9081-2E8EDFE9B632}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{806D2322-FBDE-449C-AA33-91A1FB827514}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{852D3955-822D-4615-85B3-DE346FC8A83F}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{88818371-AB29-4AA4-A2EC-BEC6493B3368}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{8B57CD95-913E-4FF3-8819-A7C68A6FFED3}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{8D9A29EC-DFD4-4966-923B-8CBA8E5712BC}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{8E3BD410-367F-4A06-818D-445FF94FE853}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{902ADEA8-9D7F-44FA-A261-EA22B7268849}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{98CBE899-87AD-46FC-9845-E858AE9E735F}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{996A5C92-47E2-4F84-96CC-693DC67EE06D}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{9E0BECC7-04FB-4B97-A5DD-049FB3CACDCD}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{9F34F000-D64F-4452-A343-C7C85D857019}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{A09DBB5B-DCCA-4643-8F0C-CABA9005E8F2}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{A8E85387-735E-49A9-AE4F-5D9F147399B8}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{A8F5FAB0-FE61-4087-BFE7-164EC465F03F}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{B0DA3C4F-94DE-4206-A1CA-5223C26E83FD}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{B1CE2D00-6190-46AC-A3B4-43B03E909E2E}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{B51AFE08-FF99-41E8-B15A-4A4906E89005}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{B5DD9E2A-FB7A-4BC4-BF6E-FBC7D2AF50E3}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{C2CECCE5-0423-4EA1-B62E-FFB3884349AF}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{C5595999-9687-4EDB-AC3F-7AC9A0F89BDD}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{C7DAEAB2-1E30-491C-A9B1-39C051F6CE84}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{C9664982-FF46-4214-AE2C-0C4475573B11}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{CD6B1936-B3A7-4263-AFEA-A4714DBBB67D}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{CE17D42E-3E30-4F4E-A33F-990173846DC8}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{CE1B1B19-A702-4EBD-B64E-6C5F78C5F574}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{CEA6C039-9A1B-4B8D-BF13-41796C61DE75}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{D1E80B75-4935-4CA7-96E9-6542C20A7CD5}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{D63D97C1-52B5-4468-A749-9DAEC18436ED}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{D69FA3E7-7FBE-4949-BA40-BF3EF92C9014}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{DE8D2FEF-9F55-4418-AEBC-300B5FDE7DBD}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{E36D14A5-B36D-4C3A-BB78-8C73F2557399}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{E62B5E51-0B87-43DB-83A3-D9D7DBE642CB}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{E62DBD64-22B5-44FB-97AB-65566EB740E0}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{E7DA2D8E-674C-4941-B77A-0A36685C79CB}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{E8D641A0-7DA6-454E-98DF-6DBC652A7102}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{EA882C6A-E6F5-4363-89FC-C09A82B81D72}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{F05C811E-CB85-46DC-99CE-D3CBFC18FE3C}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{F076AA10-5826-4529-8D06-28F06BCD5BBE}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{F4B3365C-7526-4144-B1EA-82FFF57F917B}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{F739E1F2-6A69-4611-8527-9CE2D541129C}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{FBD4746E-89AE-4FC5-B26B-CF536DA9CDFC}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{FC53D6B4-0A22-4CC3-9FD9-37E68D823DD0}
Successfully deleted: [Empty Folder] C:\Users\jacobi678\appdata\local\{FEE47ED7-175F-4BAC-98B9-CF58BC4D4D20}



~~~ FireFox

Emptied folder: C:\Users\jacobi678\AppData\Roaming\mozilla\firefox\profiles\azgatbp3.default\minidumps [276 files]



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\chdboodilddefglllfoimeceomkpmkbi



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 09/08/2013 at 11:45:22.99
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Offline johnson55

  • Full Member
  • ***
  • Posts: 142
    • View Profile
Re: I got so many spyware items from malware bytes & spybot
« Reply #6 on: September 13, 2013, 02:29:16 PM »
Corrine,
 Could you check my last jrt log and see if theirs anything else I
need to do to correct these annoyances.Thanks

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 14431
  • "Stronger than the past, united in our goal."
    • View Profile
    • Security Garden
Re: I got so many spyware items from malware bytes & spybot
« Reply #7 on: September 13, 2013, 03:33:20 PM »
I apologize for the delay.  To be honest, I've been distracted because my husband is in the hospital and I forgot about your thread.  I do check in at various times during the day.  AdwCleaner and JRT took care of a lot but it would be helpful if you could post some additional logs for me to look at. 

Please provide a copy of the logs in the Log Posting Instructions topic.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline johnson55

  • Full Member
  • ***
  • Posts: 142
    • View Profile
Re: I got so many spyware items from malware bytes & spybot
« Reply #8 on: September 14, 2013, 09:49:31 PM »
I guess I didn't understand the directions I opened a new topic In_
Analysis and Malware Removal forum.
With the 3 logs

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 14431
  • "Stronger than the past, united in our goal."
    • View Profile
    • Security Garden
Re: I got so many spyware items from malware bytes & spybot
« Reply #9 on: September 14, 2013, 11:04:18 PM »
I posted a reply with instructions in your new topic.  See here.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.