|
Posted by Tommy McClure on July 14, 2008, 10:22 am
If you were Registered and logged in, you could reply and use other advanced thread options
Is this unusual?
Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advance
d\StartMenuLogOff (Hijack.StartMenu) -> Bad: (1) Good: (0) -> No action
taken.
I removed this which is the logoff option on the startmenu, and sure enough,
that's what it was. Had to put it back. [ I use it alot ]
--
tommy
|
|
Posted by Dustin Cook on July 18, 2008, 4:20 pm
If you were Registered and logged in, you could reply and use other advanced thread options
"Tommy McClure" <tmDELccDEL72AThalDASHpcDOTorg> wrote in
> Is this unusual?
>
> Registry Data Items Infected:
> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Ad
> vance d\StartMenuLogOff (Hijack.StartMenu) -> Bad: (1) Good: (0) -> No
> action taken.
>
> I removed this which is the logoff option on the startmenu, and sure
> enough, that's what it was. Had to put it back. [ I use it alot ]
>
>
> --
> tommy
>
>
>
I'll pass this along to Bruce.
--
Regards,
Dustin Cook - http://bughunter.it-mate.co.uk
BugHunter v2.2e AntiMalware Removal Utility
For Windows users, I highly recommend:
http://www.malwarebytes.org - MalwareBytes AntiMalware
|
|
Posted by Dustin Cook on July 18, 2008, 11:48 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> Is this unusual?
>
> Registry Data Items Infected:
> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Ad
> vance d\StartMenuLogOff (Hijack.StartMenu) -> Bad: (1) Good: (0) -> No
> action taken.
>
> I removed this which is the logoff option on the startmenu, and sure
> enough, that's what it was. Had to put it back. [ I use it alot ]
Right click, select ignore. This is not a bug nor a false positive.
It's a VAC hijack point.
--
Regards,
Dustin Cook - http://bughunter.it-mate.co.uk
BugHunter v2.2e AntiMalware Removal Utility
For Windows users, I highly recommend:
http://www.malwarebytes.org - MalwareBytes AntiMalware
|
|
Posted by Tommy McClure on July 19, 2008, 11:05 am
If you were Registered and logged in, you could reply and use other advanced thread options
Dustin Cook wrote:
> "Tommy McClure" <tmDELccDEL72AThalDASHpcDOTorg> wrote in
>
>> Is this unusual?
>>
>> Registry Data Items Infected:
>> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Ad
>> vance d\StartMenuLogOff (Hijack.StartMenu) -> Bad: (1) Good: (0) ->
>> No action taken.
>>
>> I removed this which is the logoff option on the startmenu, and sure
>> enough, that's what it was. Had to put it back. [ I use it alot ]
>
> Right click, select ignore. This is not a bug nor a false positive.
> It's a VAC hijack point.
What is a VAC hijack point?
|
|
Posted by Dustin Cook on July 19, 2008, 1:08 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> Dustin Cook wrote:
>> "Tommy McClure" <tmDELccDEL72AThalDASHpcDOTorg> wrote in
>>
>>> Is this unusual?
>>>
>>> Registry Data Items Infected:
>>> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\
>>> Ad vance d\StartMenuLogOff (Hijack.StartMenu) -> Bad: (1) Good: (0)
>>> -> No action taken.
>>>
>>> I removed this which is the logoff option on the startmenu, and sure
>>> enough, that's what it was. Had to put it back. [ I use it alot ]
>>
>> Right click, select ignore. This is not a bug nor a false positive.
>> It's a VAC hijack point.
>
> What is a VAC hijack point?
VAC is short for Video Access Codec, it's one of the first trojans that
would disable things, such as my computer, run, search, logoff.
So we detect that this is set, and tell you about it. Noobs don't
usually have these set, but more experienced users like you may, so we
suggest you right click/ select ignore.
--
Regards,
Dustin Cook - http://bughunter.it-mate.co.uk
BugHunter v2.2e AntiMalware Removal Utility
For Windows users, I highly recommend:
http://www.malwarebytes.org - MalwareBytes AntiMalware
|
| Similar Threads | Posted | | False Positive? | September 10, 2005, 8:22 am |
| False positive? | April 8, 2007, 4:28 pm |
| False Positive on Keylogger??? | June 10, 2006, 11:38 am |
| False Positive, Posssible / Likely? | July 24, 2008, 1:20 pm |
| Spybot 1.4 Smitfraud-C False Positive? | July 29, 2005, 11:23 pm |
| New False Positive from Spyware Doctor? | February 1, 2007, 8:41 pm |
| Win32:Mhtplo-10 - False positive? | November 30, 2007, 3:27 pm |
| PCANDIS5.sys Trojan or False Positive? | June 28, 2008, 5:04 am |
| likely semi-false positive"intrusion" nav05 | April 8, 2006, 1:30 am |
| False positive with a-squared anti trojan? | February 4, 2007, 5:47 pm |
|
XML site map