Spyware/adware check?

Discussion in 'other security issues & news' started by Atomas31, Oct 20, 2004.

Thread Status:
Not open for further replies.
  1. Atomas31

    Atomas31 Registered Member

    Joined:
    Sep 7, 2004
    Posts:
    923
    Location:
    Montreal, Quebec
    Hi,

    Is there a place where we can see if what our anti-spyware found are false/positive or legit nasties? Or is there a place where we can post what our anti-spyware found and some pro check it and confirm if they are legit nasties or simply false/positive?

    Thank you,
    Atomas31
     
  2. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    Hey Atomas31,

    I have moved you to the appropriate Forum your asking about. As for your other questions....feel free to post your finds and other knowledgeable members will be glad to take a look.
     
  3. Atomas31

    Atomas31 Registered Member

    Joined:
    Sep 7, 2004
    Posts:
    923
    Location:
    Montreal, Quebec
    Hi Bubba,

    Thanks for your reply,

    As for entries found by Spyware Doctor and Pest Patrol and for wich I will appreciate if someone could confirm to me that they are False/Positive (and what they are) or legit nasties, Thanks :

    Pest Patrol log :

    BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\clsid\{71a27032-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN

    BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\clsid\{71a27034-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN

    BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\interface\{71a2702e-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN

    BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\interface\{71a27031-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN

    BonziBuddy,HKEY_LOCAL_MACHINE\software\classes\interface\{71a27036-c7d8-11d2-bef8-525400dfb47a},na,na,20041019,00-0D-61-47-31-0B,CAN

    ClearSearch,C:\WINDOWS\system32\ietie.dll,na,na,20041019,00-0D-61-47-31-0B,CAN

    Fresh Devices,C:\Program Files\freshdevices\freshdownload\fdcatch.dll,na,na,20041019,00-0D-61-47-31-0B,CAN

    ISTbar,HKEY_LOCAL_MACHINE\software\classes\typelib\{11269241-f241-11cf-bd9a-00aa00575603},na,na,20041019,00-0D-61-47-31-0B,CAN

    XoloX,HKEY_CLASSES_ROOT\gnutella,na,na,20041019,00-0D-61-47-31-0B,CAN (Is this related to some of my P2P software?)


    Spyware doctor log :

    007 Keylogger (HKCR\clsid\{48E59293-9880-11CF-9754-00AA00C00908})

    007 Keylogger (HKCR\Interface\{48E59291-9880-11CF-9754-00AA00C00908})
    007 Keylogger (HKCR\TypeLib\{48E59290-9880-11CF-9754-00AA00C00908})

    IEPlugin (HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl)

    Super-gals.com (HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
    Settings\ZoneMap\Domains\xxxtoolbar.com)

    Virtual Bouncer (HKCR\CLSID\{48E59293-9880-11CF-9754-00AA00C00908})

    Virtual Bouncer (HKCR\CLSID\{48E59294-9880-11CF-9754-00AA00C00908})

    Virtual Bouncer (HKCR\CLSID\{48E59295-9880-11CF-9754-00AA00C00908})

    Virtual Bouncer (HKCR\InetCtls.Inet)

    Virtual Bouncer (HKCR\InetCtls.Inet.1)

    Virtual Bouncer (HKCR\Interface\{48E59291-9880-11CF-9754-00AA00C00908})

    Virtual Bouncer (HKCR\Interface\{48E59292-9880-11CF-9754-00AA00C00908})

    Virtual Bouncer (HKCR\TypeLib\{48E59290-9880-11CF-9754-00AA00C00908})
    Spyblocs (C:\WINDOWS\system32\aamd532.dll)

    Thanks for your help,
    Atomas31
     
Loading...
Thread Status:
Not open for further replies.