Sometimes when I open Outlook I get an alert of possible worm activity from McAfee VirusScan but McAfee, Trojan Hunter, Trojan Remover, Spybot S&D, Adaware SE Pro, Panda Online Virus Scan, Trend Micro Online Virus Scan, AND BitDefender Online Virus Scan haven't found anything. (I've updated everything before checking.) I'm beginning to think this is simply a false positive caused by Cloudmark's newest version of SafetyBar I upgraded to just before this problem began. In any case could someone please double check my log for any potential culprits or other problems.
Thanks in advance!
Logfile of HijackThis v1.99.0
Scan saved at 6:08:36 PM, on 12/19/2004
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Highlight - C:\WINDOWS\web\myie-highlight.htm
O8 - Extra context menu item: &Search Google - C:\WINDOWS\web\myie-srch-goog.htm
O8 - Extra context menu item: &Url List - C:\WINDOWS\web\myie-link-list.htm
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Open Link Target in Firefox - file://C:\Documents and Settings\Sheldon\Application Data\Mozilla\Firefox\Profiles\default.7h0\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewlink.html
O8 - Extra context menu item: Pop Fra&me - C:\WINDOWS\web\myie-frmbust.htm
O8 - Extra context menu item: Search &Groups - C:\WINDOWS\web\myie-srch-groups.htm
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Tra&nslator - C:\WINDOWS\web\myie-trans-goog.htm
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O8 - Extra context menu item: Va&lidate - C:\WINDOWS\web\myie-val-w3.htm
O8 - Extra context menu item: Verify Lin&ks - C:\WINDOWS\web\myie-links-w3.htm
O8 - Extra context menu item: View This Page in Firefox - file://C:\Documents and Settings\Sheldon\Application Data\Mozilla\Firefox\Profiles\default.7h0\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewpage.html
O8 - Extra context menu item: Zoom &In - C:\WINDOWS\web\myie-zoomin.htm
O8 - Extra context menu item: Zoom O&ut - C:\WINDOWS\web\myie-zoomout.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Need Log Analyzed
in Malware Removal
Posted
Hello, I was directed here by a friend.
Sometimes when I open Outlook I get an alert of possible worm activity from McAfee VirusScan but McAfee, Trojan Hunter, Trojan Remover, Spybot S&D, Adaware SE Pro, Panda Online Virus Scan, Trend Micro Online Virus Scan, AND BitDefender Online Virus Scan haven't found anything. (I've updated everything before checking.) I'm beginning to think this is simply a false positive caused by Cloudmark's newest version of SafetyBar I upgraded to just before this problem began. In any case could someone please double check my log for any potential culprits or other problems.
Thanks in advance!