الموضوع: برنامج هائل لإكتشاف ملفات التجسس وحذفها منالجهاز والريجستر
عرض مشاركة مفردة
  #6  
قديم 21-09-2000, 10:15 AM
عبدالله911 عبدالله911 غير متصل
Registered User
  
تاريخ التّسجيل: Sep 2000
المشاركات: 172
Post
وأنا طلع لي هاذي الكشفيه
Started scan on 21/09/00 at 12:59:56 م

Scanning Memory
=================
modules found:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXE
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RNAAPP.EXE
C:\WINDOWS\SYSTEM\TAPISRV.EXE
C:\PROGRAM FILES\REAL\REALPLAYER\REALPLAY.EXE
C:\PROGRAM FILES\COMET\MYCOMETCURSOR.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAM FILES\ZONE LABS\ZONEALARM\ZONEALARM.EXE
C:\PROGRAM FILES\WEBSHOTS\WEBSHOTSTRAY.EXE
C:\WINDOWS\SYSTEM\MDM.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\WINZIP\WINZIP32.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\UNZIPPED\AAW_36\AD-AWARE 3.6\AD-AWARE 361.EXE

Running processes:19

Aureate modules found:0
TimeSink modules found:0
CometCursor modules found:0
Cydoor modules found:0
Web3000 modules found:0
Gator modules found:0


Scanning registry
================
suspicious keys found:
Gator:HKLM\Software\Gator.com
Web3000:HKLM\Software\Web3000
CometCursor:HKCR\CometCursor.cometcursor
CometCursor:HKCR\CometCursor.cometcursor.1
CometCursor:HKCR\CLSID\{1678F7E1-C422-11D0-AD7D-00400515CAAA}
CometCursor:HKCR\Typelib\{3C0C31A2-70A2-11D1-B69E-444553540000}
CometCursor:HKLM\Software\Comet
CometCursor:HKLM\Software\microsoft\windows\curren tversion\run\MyCometCursor
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\Uninstall\MyComet
CometCursor:HKLM\Software\Microsoft\Code Store Database\Distribution Units\{1678F7E1-C422-11D0-AD7D-00400515CAAA}
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\Internet Settings\Accepted Documents\X-Comet
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/light.gif
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/logo.gif
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_website_empty.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_topnav.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_title.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_sponsor.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_splash.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_site_info.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_saved_info.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_nav.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_main.css
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_logo.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/help.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_blank_info.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_botnav.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/o_alma.js
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/index.html
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MyCometCursor.exe
CometCursor:HKLM\Software\Microsoft\Windows\Curren tVersion\Uninstall\Comet
CometCursor:HKCR\CLSID\{1678f7e1-c422-11d0-ad7d-00400515caaa}
TimeSink:HKLM\Software\TimeSink, Inc.
TimeSink:HKCU\Software\microsoft\windows\currentve rsion\runTimeSink, Inc.


WARNING:33 spyware key(s) found.

Scanning bootdrive
==================
suspicious files found:
CometCursor folder detected:C:\Program Files\Comet
Cydoor cache folder detected:C:\Program Files\Odigo\adcache
Conducent/Timesink cache folder detected:C:\Program Files\TimeSink\AdGateway
Conducent/Timesink cache folder detected:C:\Program Files\TimeSink
CometCursor folder detected:C:\WINDOWS\CURSORS\Comet
AureateFile:C:\Program Files\MediaRing Talk 99\Advert.dll
CometCursor file:C:\Program Files\Comet\MCC_Install.exe
CometCursor file:C:\Program Files\Comet\MyCometCursor.exe
Conducent/Timesink file:C:\Program Files\GlobalSCAPE\CuteFTP\tsad.dll
Conducent/Timesink file:C:\Program Files\GlobalSCAPE\CuteFTP\CTInstall.exe
Conducent/Timesink file:C:\Program Files\GlobalSCAPE\CuteFTP\TSUninstaller.exe
Gator cache folder detected:C:\Program Files\gator.com
Web3000 file:C:\WINDOWS\SYSTEM\InstNetMgr.dll
Web3000 file:C:\WINDOWS\SYSTEM\w3util2.dll
Web3000 file:C:\WINDOWS\SYSTEM\W3Inet.dll
CometCursor file:C:\WINDOWS\SYSTEM\comet.dll
Conducent/Timesink file:C:\WINDOWS\TEMP\CTInstall.exe
Conducent/Timesink file:C:\WINDOWS\TEMP\SimpleRegistration.dll
CometCursor file:C:\WINDOWS\Downloaded Program Files\MyCometCursor.exe
DoubleClick Cookie:C:\WINDOWS\Cookies\user@doubleclick(1).txt
DoubleClick Cookie:C:\WINDOWS\Cookies\ueiالله@doubleclick(1).t xt
DoubleClick Cookie:C:\WINDOWS\Cookies\abdullah@doubleclick(1). txt
Gator file:C:\WINDOWS\GatorUninstaller.exe


Scan complete...

Scan-Result:
==============
56 Spyware references found.
يعني مافيه شيء بأذن الله
الرد مع إقتباس