Jump to content

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Staff Sign In
Sign Up

File Detections

PUM.Hijack.HomepageControl IE10 related

Durre

By Durre
August 21, 2013 in File Detections

Share

Recommended Posts

Durre

Durre

Posted August 21, 2013

- Share

Posted August 21, 2013

Potentially Unwanted Malware detected controlling IE10's homepage. In deliberation with GeeksToGo was concluded that this is most likely a false positive caused by one of my security programs like OnlineArmor or WinPatrol. The following link is a reference to the topic on the forum of GeeksToGo that discusses whether this could truly be malware, I hope this helps: http://www.geekstogo.com/forum/topic/332496-pumhijackhomepagecontrol-false-is-this-a-false-positive-caused-by/

Here is the MBAM log:

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

Databaseversie: v2013.08.21.05

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 10.0.9200.16660

Mattias :: DURRE [administrator]

8/21/2013 7:52:43 PM

MBAM-log-2013-08-21 (21-11-46).txt

Scan type: Volledige scan (C:\|D:\|)

Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM

Uitgeschakelde scan opties: P2P

Objecten gescand: 315893

Verstreken tijd: 40 minuut/minuten, 41 seconde(n)

Geheugenprocessen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 1

HKCU\SOFTWARE\Policies\Microsoft\Internet Explorer\control panel|Homepage (PUM.Hijack.HomePageControl) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. [d9201373175590a60e7b9ea06d9729d7]

Mappen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

(einde)

MBAM_log_2013_08_21_21_11_46_.zip

Link to post

Share on other sites

Staff

shadowwar

Posted August 22, 2013

Staff

- Share

Posted August 22, 2013

This doesnt mean this: Potentially Unwanted Malware it means Potentially unwanted Modification

This setting is not set to the default in windows and that is what is being detected. If you want this setting you can add this to the ignore list.

We have seen malware change this setting that is why its labeled PUM or potentially unwanted modification.

This doesnt always mean u have malware. In this case its picking up the homepage being locked. Which malware often does.

Link to post

Share on other sites

Durre

Durre

Posted August 22, 2013

Author

- Share

Posted August 22, 2013

Hello Shadowwar,

Thank you for the explanation. I am now 99% sure that it is S¨pywareBlaster which is locking my IE10 homepage. So I'll have it added to the ignore list. Thanks again!

Link to post

Share on other sites

Staff

shadowwar

Posted August 23, 2013

Staff

- Share

Posted August 23, 2013

Spywareblaster would do it.

Great glad u figured it out.

Link to post

Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Share

Go to topic listing

Recently Browsing 0 members
- No registered users viewing this page.

×

×

Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

IPS spam blocked by CleanTalk.