Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Are these files harmful and should they be deleted?


  • Please log in to reply
3 replies to this topic

#1 tjpitts10

tjpitts10

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 December 2013 - 08:42 PM

These files were the result from a Malwarebytes scan.  I am not sure if they should be deleted or if they are harmful?

 

PUP.Optional.Conduit

 

Registry Value - hkcu/software/microsoft/windows/currentversion/run/tbhostsupport

 

Folder - c:\documents and settings\user\local settings\application data\tbhostsupport

 

File - c:\documents and settings\user\local settings\application data\tbhostsupport\tbhostsupport.dll

 

Memory Module - c:\documents and settings\user\local settings\application data\tbhostsupport\tbhostsupport.dll

 

 

Thanks!!

 

 

 

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,914 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:43 AM

Posted 06 December 2013 - 09:05 PM

Hello tj

A PUP is a Potentially Unwanted Program

Conduit is a toolbar engine installed (bundled) alongside many free applications which allows users to add applications directly to their browser without a community toolbar. Conduit offers a distribution option for Conduit-powered offerings and is used in order to generate ad revenue for the company. While not explicitly malware, it is often installed stealthily without knowledge or consent from the end user.


How do I earn money with bundles?
By offering (bundling) a Community Toolbar in your software installer, you are boosting the Community Toolbars installs. The Active Rewards program pays you based on the number of daily active users of your Community Toolbar according to the Three Tiers Table. If you are not yet a member of the Active Rewards program, you can join through the Make Money tab.

Conduit Community Toolbar Help Center

Many toolbars, Add-ons, and browser extensions come bundled with other software (often without the knowledge of the user) and can be the source of various issues and problems to include Adware and browser hijacking which may change your home page and search engine. Even if advised of a toolbar, many folks do not know that it is optional and not necessary to install in order to operate the program. {Thanks to quietman7 for the explanation}



Remove it.

ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.
  • [/list]

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 tjpitts10

tjpitts10
  • Topic Starter

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 December 2013 - 09:26 PM

Thank you for the information.  I will follow the instructions given to get rid of it!



#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,119 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:43 AM

Posted 06 December 2013 - 10:06 PM

These files were the result from a Malwarebytes scan.  I am not sure if they should be deleted or if they are harmful?


FYI: A Potentially Unwanted Program (PUP) is a very broad threat category which can encompass any number of different programs to include those which are benign as well as malicious. Thus, this type of detection does not always necessarily mean the file is malicious or a bad program. PUPs in and of themselves are not always bad...many are generally known, non-malicious but unwanted software usually bundled with other free third-party software to include toolbars, add-ons/plug-ins and browser extensions. PUPs are considered unwanted because they can cause undesirable system performance or other problems and are sometimes installed without the user's consent since they are often included when downloading legitimate programs.

In the past, Malwarebytes Anti-Malware detected only PUPs that were considered mostly harmful and deceiving but they revised their policy, taking a more aggressive approach to include PUPs that most users found annoying or misleading. PUPs may be defined somewhat differently by various security vendors. This is what Malwarebytes has to say:
* What are the 'PUP' detections, are they threats and should they be deleted?
* Malwarebytes Adopts Aggressive PUP Policy
* Malwarebytes: Potentially Unwanted Miners – Toolbar Peddlers Use Your System To Make Bitcoin Mining

PUPs may also be defined somewhat differently by various security vendors and may or may not be detected/removed based on that definition.About those Toolbars and Add-ons which change your browser settings
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users