Solved

Malware

Posted on 2012-03-22
3
1,096 Views
Last Modified: 2013-12-06
Hi,

I downloaded Malwarebytes because one of the computes in our domain was running very slow.  Malwarebytes detected "pum.hijack.desktop" and when I removed it the computer ran super fast.  The hijack does not seem to have any affact on other workstations however, it's on all the workstations.  I keep using Malwarebytes to remove the hijack but it keeps commig back.  Now pum.hijack.displayproperties is showing up.

How do I completly remove the hijack for the domain.

Thank you in advance.
0
Comment
Question by:Reyesrj
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 30

Accepted Solution

by:
Sudeep Sharma earned 500 total points
ID: 37751286
Could you check if  you have any Group Policy for the Display Settings and any settings related to the Desktop Background (if user can change the wall paper or add any Widgets)

The "PUM" defines a "Potentially Unwanted Modification," so not necessarily harmful to the systems.

I hope that would help.

Sudeep
0
 

Author Comment

by:Reyesrj
ID: 37751620
Yes we do.  And that makes sense.  This started when we locked down the desktop background.

Why did it slow down that one workstation?
0
 

Author Closing Comment

by:Reyesrj
ID: 37751737
Thanks
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Ready to improve network connectivity? Watch this webinar to learn how SD-WANs and a one-click instant connect tool can boost provisions, deployment, and management of your cloud connection.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

PREFACE The purpose of this guide is to explain what the SEPC Status Utility is and how it works. I have written the utility using AutoIt and have included the source code for your review. You are welcome to modify the code to your liking, but I wi…
PREFACE The purpose of this guide is to provide information to successfully add specific IIS 7.0 role services for the Symantec Endpoint Protection Manager (SEPM) to function properly when installed on Windows 2008. AUDIENCE Information Technol…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question