Atomas31
October 20th, 2004, 10:54 AM
Hi,
Is there a place where we can see if what our anti-spyware found are false/positive or legit nasties? Or is there a place where we can post what our anti-spyware found and some pro check it and confirm if they are legit nasties or simply false/positive?
Thank you,
Atomas31
Bubba
October 20th, 2004, 11:10 AM
Hey Atomas31,
I have moved you to the appropriate Forum your asking about. As for your other questions....feel free to post your finds and other knowledgeable members will be glad to take a look.
Atomas31
October 20th, 2004, 02:17 PM
Hi Bubba,
Thanks for your reply,
As for entries found by Spyware Doctor and Pest Patrol and for wich I will appreciate if someone could confirm to me that they are False/Positive (and what they are) or legit nasties, Thanks :
Pest Patrol log :
BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\clsid\{71a27032-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN
BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\clsid\{71a27034-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN
BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\interface\{71a2702e-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN
BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\interface\{71a27031-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN
BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\interface\{71a27036-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN
ClearSearch,C:\WINDOWS\system32\ietie.dll,na,na,20041019,00-0D-61-47-31-0B,CAN
Fresh Devices,C:\Program Files\freshdevices\freshdownload\fdcatch.dll,na,na,20041019,00-0D-61-47-31-0B,CAN
ISTbar,HKEY_LOCAL_MACHINE\software\classes\typelib\{11269241-f241-11cf-bd9a-00aa00575603},na,na,20041019,00-0D-61-47-31-0B,CAN
XoloX,HKEY_CLASSES_ROOT\gnutella,na,na,20041019,00-0D-61-47-31-0B,CAN (Is this related to some of my P2P software?)
Spyware doctor log :
007 Keylogger (HKCR\clsid\{48E59293-9880-11CF-9754-00AA00C00908})
007 Keylogger (HKCR\Interface\{48E59291-9880-11CF-9754-00AA00C00908})
007 Keylogger (HKCR\TypeLib\{48E59290-9880-11CF-9754-00AA00C00908})
IEPlugin (HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl)
Super-gals.com (HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings\ZoneMap\Domains\xxxtoolbar.com)
Virtual Bouncer (HKCR\CLSID\{48E59293-9880-11CF-9754-00AA00C00908})
Virtual Bouncer (HKCR\CLSID\{48E59294-9880-11CF-9754-00AA00C00908})
Virtual Bouncer (HKCR\CLSID\{48E59295-9880-11CF-9754-00AA00C00908})
Virtual Bouncer (HKCR\InetCtls.Inet)
Virtual Bouncer (HKCR\InetCtls.Inet.1)
Virtual Bouncer (HKCR\Interface\{48E59291-9880-11CF-9754-00AA00C00908})
Virtual Bouncer (HKCR\Interface\{48E59292-9880-11CF-9754-00AA00C00908})
Virtual Bouncer (HKCR\TypeLib\{48E59290-9880-11CF-9754-00AA00C00908})
Spyblocs (C:\WINDOWS\system32\aamd532.dll)
Thanks for your help,
Atomas31
vBulletin® Copyright ©2000-2012, Jelsoft Enterprises Ltd.