4 replies to this topic

[mcgiles]

Hi, I think it's a false positives because I never used the search engine or toolbar by 7 FaSSt. Also, I ran all the big antivirus/spyware and nobody find somethings.

Thanks

Attached Files

•  mbam-log-2012-02-21 (16-28-07).txt   2.31K   4 downloads

[nosirrah]

This looks like a trace of something that was removed long ago.

https://www.google.c...=i&cr=&safe=off

[mcgiles]

Yes, but I do a clean install not so long ago, and I remember that since than nothing (virus/spyware...) as ben found. . I also ran Emsisoft wich is pretty sensible for trace of malware and he found nothing. So, it's why I found it weird and think it's a false positive.

Thanks

[nosirrah]

{37686C62-D497-42E3-BAAB-78D89A74E151}

This is the GUID is question and in your log it is being detected in a very obscurre location that likely would not be checked by most other scanners.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\

I have done some more digging and so far all I see are toolbar installs related to this GUID although it seems that the toolbar in question can have many other names. This has also been in the database for a very long time without any other fase positive reports.

[mcgiles]

Thank you for your help !