Malwarebytes list of detected items and action taken

linni

I have a list of detected items (Registry keys). Have I done the right thing in quaranteening them all? Could a techie please check for me.

Malwarebytes Anti-Malware
https://www.malwarebytes.org

Scan Date: 09/06/2014
Scan Time: 12:13:32
Logfile: mbytes scan 9.6.14.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.09.02
Rootkit Database: v2014.06.02.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: User

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 310952
Time Elapsed: 2 hr, 1 min, 42 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 29
PUP.Optional.RRSavings.A, HKLM\SOFTWARE\Rr Savings, , [87dfb7bf0d6ecf675b5ac1e5d52da45c],

PUP.Optional.SupraSavings.A, HKLM\SOFTWARE\suprasavings, , [41250472d4a7a4927a4ec8e3af53758b],

PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\19979, , [41250d693a41a88ebbb7affeea182ed2],

PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\21636, , [d98dfc7a572448ee373b06a75ba7b54b],

PUP.Optional.CrossRider.M, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511291116}, , [3b2b9dd996e54ee8d4d2b9b88084bb45],

PUP.Optional.CrossRider.M, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110511291116}, , [3b2b9dd996e54ee8d4d2b9b88084bb45],

PUP.Optional.CrossRider.M, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110511801126}, , [a3c30d69b0cb1026d8ceb0c1dc282dd3],

PUP.Optional.CrossRider.M, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110511801126}, , [a3c30d69b0cb1026d8ceb0c1dc282dd3],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{92aa6038-35c9-4666-893f-84716dec281c}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{92AA6038-35C9-4666-893F-84716DEC281C}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{00ea37fc-d491-4e3e-a53a-f24552968d65}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{4409b1b8-68a3-4886-9aea-9ad1593c5797}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.NotificationSource.1, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.NotificationSource, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wtb.NotificationSource, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wtb.NotificationSource.1, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4409B1B8-68A3-4886-9AEA-9AD1593C5797}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A928E66C-F501-4E66-9953-855C712F93B2}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A928E66C-F501-4E66-9953-855C712F93B2}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{f588d455-92a8-4905-9e12-a2d63af81368}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.SourceSinkImpl.1, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\wtb.SourceSinkImpl, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wtb.SourceSinkImpl, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\wtb.SourceSinkImpl.1, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{F588D455-92A8-4905-9E12-A2D63AF81368}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{92AA6038-35C9-4666-893F-84716DEC281C}\INPROCSERVER32, , [5016581ed2a9e94db7f8b5be3ec6a15f],

PUP.Optional.HomeTab.A, HKU\S-1-5-21-4164653755-1691273641-4167000102-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{92AA6038-35C9-4666-893F-84716DEC281C}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

Registry Values: 1
PUP.Optional.HomeTab.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{92AA6038-35C9-4666-893F-84716DEC281C}, , [5016581ed2a9e94db7f8b5be3ec6a15f],

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
PUP.Optional.HomeTab.A, C:\Program Files\HomeTab\IE\HomeTab.dll, , [5016581ed2a9e94db7f8b5be3ec6a15f],

Physical Sectors: 0
(No malicious items detected)


(end)

linni

I've never had anything like this before. Usually just one!

GunJack

you need to tick the boxes next to them all, then hit Remove Selected button

linni

Hi GunJack.

I just quaranteened them all but I wasn't sure if they were all bad ones (Is that a daft question?) because I have, in the past, quaranteened something that I shouldn't have done!

Should I run it again and remove them or will they not show up again?

Thank you.

dogmaryxx

linni wrote: »

Hi GunJack.

I just quaranteened them all but I wasn't sure if they were all bad ones (Is that a daft question?) because I have, in the past, quaranteened something that I shouldn't have done!

Should I run it again and remove them or will they not show up again?

Thank you.

Just leave them in quarantine for a while.
You can restore/delete at a future date as required.

linni

OK. That's great. Thank you for your help..