Jump to content

help hijack


mbyuser

Recommended Posts

if i choose to hide the help and support option on the start menu i get told its been hijacked.

it hasnt i choose to hide it as i dont want it on the menu.

m/bytes puts it back on the start menu.

all good nothing serious but just thought i would post this info.

i dont think you need the developers log (i am not being rude one iota)

just put simply i explianed how this error happens alought i am no expert,so if it is wanted please ask and i will provide.

log off incdent;

Malwarebytes' Anti-Malware 1.34

Database version: 1841

Windows 5.1.2600 Service Pack 3

12/03/2009 23:01:32

mbam-log-2009-03-12 (23-01-32).txt

Scan type: Full Scan (C:\|)

Objects scanned: 85796

Time elapsed: 25 minute(s), 41 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 1

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

btw greart product and thats for the free time given to all subjects.

best wishes.

mbyuser.

Link to post
Share on other sites

  • Staff

Hi,

This policy is being set by malware in most cases, so actually, this is no false positive.

This would be the same as the policy for disable taskmanager, disable regedit etc was set by malware - while some people may also have added it by themselves. So, better to remove than to ignore.

In your case, since you have set this policy, you can just ignore it in MBAM. :P

Link to post
Share on other sites

thanks for your freely given time.

and agin thank you for clearing that up.

imo i think its a exelent idea that m/bytes put it back in place,mabye old but to me its a new way off going about things and i would rather it put it back than rip out somthing if you kwim.

as you say i do have the option to put it into the ignore list.

rather than a string of questions if its not out off order i might as well ask in this reply

(i will have some questions as my daugher has brought her laptop around~what a mess)

the module that m/bytes offers with the paid product would it clash with webroots spysweeper & anti virus?

agiain thanks for your FREELY given time.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.