Jump to content


Photo

Is my chrome.exe really Hijack?


  • Please log in to reply
4 replies to this topic

#1 DRich

DRich

    New Member

  • Members
  • Pip
  • 6 posts
  • Gender:Male

Posted 28 March 2012 - 11:06 PM

Malwarebytes Anti-Malware (PRO) 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.28.07

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Aldrich :: ALDRICH-PC [administrator]

Protection: Enabled

3/29/2012 11:08:07 AM
mbam-log-2012-03-29 (11-08-07).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 256362
Time elapsed: 49 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe (Security.Hijack) -> No action taken.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Is this false positive or do I need to remove this?

#2 nosirrah

nosirrah

    Forum Deity

  • Administrators
  • PipPipPipPipPipPip
  • 5,452 posts
  • Gender:Male
  • Location:Northampton, MA USA

Posted 29 March 2012 - 02:31 PM

This looks like something (possibly intentionally on your part) is trying to run a different application when chrome is launched.

Does this sound familiar in any way?
Bruce Harrison
Vice President of Research

Posted Image

Follow us: Twitter, Become a fan: Facebook

#3 DRich

DRich

    New Member

  • Members
  • Pip
  • 6 posts
  • Gender:Male

Posted 29 March 2012 - 10:34 PM

This looks like something (possibly intentionally on your part) is trying to run a different application when chrome is launched.

Does this sound familiar in any way?


I don't know, maybe it's because of tune-up utilities I disable chrome there. what do you think?

#4 shadowwar

shadowwar

    Forum Deity

  • Moderators
  • PipPipPipPipPipPip
  • 5,242 posts
  • Gender:Male

Posted 30 March 2012 - 02:20 PM

Yes that is probably the cause. Hard to say without an export of the key.
Rich Matteo
Research Engineer

staff.png

Follow us: Twitter, Become a fan: Facebook

#5 DRich

DRich

    New Member

  • Members
  • Pip
  • 6 posts
  • Gender:Male

Posted 30 March 2012 - 10:36 PM

Yes that is probably the cause. Hard to say without an export of the key.


OK thanks mate...




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users