SUPERAntySpayware as Trojan Horse?

[gpf]

After I have update Firefox I have scan again with MAB and it found and quarantine 2 new infections :

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Database version: 5214

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

01/12/2010 18.47.16
mbam-log-2010-12-01 (18-47-16).txt

Scan type: Full scan (C:\|)
Objects scanned: 262128
Time elapsed: 1 hour(s), 16 minute(s), 47 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowMyDocs (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Now I'm quite sure which I have a virus on my PC.

[DavidR]

They aren't infections as such, just changed registry values.

These would change some of the explorer options to show MyDocs and Help, MBAM doesn't actually delete these but changes the values back to the default.

[gpf]

I think I'll format the pc  . Too many viruses in a few days, I think i have the computer infected and the programs will not detect them.

[Lisandro]

I think I'll format the pc  . Too many viruses in a few days, I think i have the computer infected and the programs will not detect them.

[nsm0220]

I think I'll format the pc  . Too many viruses in a few days, I think i have the computer infected and the programs will not detect them.

try this: gdata rescue cd https://www.gdatasoftware.co.uk/support/main-subjects/upgrade-service/download.html

[YoKenny]

@ nsm0220

Your signature http://www.petitionspot.com/petitions/OhMyGoddessTheGame to sign my petition is blocked by hpHosts HOSTS file:
http://hosts-file.net/?s=www.petitionspot.com&x=27&y=9 <== • EMD - sites engaged in malware distribution This classification is assigned to website's engaged in the distribution of malware (e.g. adware, spyware, trojans and viruses etc).

Sites with this classification typically either contain files (e.g. cracks, keygens, adware, spyware, trojans, viruses et al) or lead to such via (for example) "fake scanners" or other social engineering and misleading tactics. This includes the activities of rogue Internet Service Providers (ISPs) that host other sites to which the EMD classification applies. 

[nsm0220]

@ nsm0220

Your signature http://www.petitionspot.com/petitions/OhMyGoddessTheGame to sign my petition is blocked by hpHosts HOSTS file:
http://hosts-file.net/?s=www.petitionspot.com&x=27&y=9 <== • EMD - sites engaged in malware distribution This classification is assigned to website's engaged in the distribution of malware (e.g. adware, spyware, trojans and viruses etc).

Sites with this classification typically either contain files (e.g. cracks, keygens, adware, spyware, trojans, viruses et al) or lead to such via (for example) "fake scanners" or other social engineering and misleading tactics. This includes the activities of rogue Internet Service Providers (ISPs) that host other sites to which the EMD classification applies.

its a fp 

[YoKenny]

its a fp 

Ask for its removal:
Please submit sites to be removed to this thread
http://forum.hosts-file.net/viewtopic.php?f=10&t=2142