Inactive [A] Pum hijack startmenu

Status
Not open for further replies.
I am a new member.

I have two laptops Gateway NV59 and HP HDX 16 of which the following are installed on them both: Windows 7 64bit Home Prem, Comodo Internet Security version 5.10, Avast version 7.01426, Webroot Spysweeper 6.1.0.157 and malware bytes version 1.6.1.01400.

Gateway NV59:

I scan my laptop with malware bytes and got the following malware:

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

I did not delete it yet. I then proceeded to scan the Gateway laptop with the following and the results were:

Webroot Spysweeper - full scan - nothing found
Avast - full scan - nothing found
Panda Active Scan - portable version - scan finished without detection
Comodo Internet Security (with antivirus manual run) - nothing found

HP HDX16:
In February I took this laptop for service as I could only load in safemode but not by regular startup. I was told by the tech that Windows 7 was corrupt, so they reformatted the drive and installed Win 7 64 bit SP1. I then installed Avast, Comodo Internet Security (CIS) and other programs. It has not been on the internet since February to download and install Avast and CIS,

On May 7 this was the first since this laptop has been on the net and I installed flash player, with it came McAfee Online Scan. I used McAfee to scan my laptop and it found nothing - no viruses or malware. I then uninstalled McAfee using Revo Uninstaller.

I scan my laptop with malware bytes and got the following malware:

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

I did not delete this. I then scan my laptop with the following and the results were:

Comodo Internet Security with Antivirus (antivirus manual loading) scanned computer in predefined mode - nothing found
Panda Active Scan Cleaner - nothing found
Avast full scan - not completed
spysweeper full scan - not completed

I have not completed the scanning for the HP HDX16. I will provided them once completed.

but in the meantime for the Gateway NV59 is the pum hijack startmenu malware real malware or did malware byetes find a false positive. I do not understand why the other programs did not find it.

If it is a malware how do I get rid of it on the Gateway NV59 and eventually on the HP HDX16, please provide detailed steps.

How would I know that it has been completely removed. Your assistance is greatly appreciated. I have included the log from malware bytes Thanks
Grail
 

Attachments

  • mbam-log-2012-05-06 (22-23-06).txt
    2 KB · Views: 0
Welcome aboard
yahooo.gif


Please, complete all steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.

Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running tools or applying updates other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

One computer per topic please.
 
Status
Not open for further replies.
Back