Sujet Précédent Sujet Suivant

Ad aware 14 infections ???

Fermé
la petite ourse - 2 févr. 2009 à 04:46
 Utilisateur anonyme - 2 févr. 2009 à 06:02
Bonjour,
le scan COMPLET de mon ordi avec MBAM,a2free,spyware doctor et superantispyware ne détecte rien,par contre
le scan avec ad aware anniversaire edition me dit que j'ai 14 files infectés.
je n'ai pas choisi d'action j'ai laissé recommandé et le logiciel les a skipped=sauté=autorisé.
que quelqu'un me dise si je peux les supprimer en toute sécurité (VOIR rapport ci dessous)
Merci de votre aide


Logfile created: 01/02/2009 8:35:53
Lavasoft Ad-Aware version: 8.0
Extended engine version: 8.1
User performing scan: soft

*********************** Definitions database information ***********************
Lavasoft definition file: 146.2
Extended engine definition file: 8.1

******************************** Scan results: *********************************
Scan profile name: Analyse complète (ID: full)
Objects scanned: 221260
Objects detected: 14


Type Detected
==========================
Processes.......: 0
Registry entries: 0
Hostfile entries: 0
Files...........: 14
Folders.........: 0
LSPs............: 0
Cookies.........: 0
Browser hijacks.: 0
MRU objects.....: 0



Skipped items:
Description: C:\Windows\System32\404Fix.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\Agent.OMZ.Fix.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\fmod.dll Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\IEDFix.C.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\IEDFix.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\o4Patch.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\openports.dll Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\SrchSTS.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\swreg.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\swsc.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\swxcacls.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\VACFix.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\VCCLSID.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0
Description: C:\Windows\System32\WS2Fix.exe Family Name: Suspicious Object Clean status: Success Item ID: 0 Family ID: 0

Scan and cleaning complete: Finished correctly after 3347 seconds

*********************************** Settings ***********************************

Scan profile:
ID: full, enabled:1, value: Analyse complète
ID: scancriticalareas, enabled:1, value: true
ID: scanrunningapps, enabled:1, value: true
ID: scanregistry, enabled:1, value: true
ID: scanlsp, enabled:1, value: true
ID: scanads, enabled:1, value: true
ID: scanhostsfile, enabled:1, value: true
ID: scanmru, enabled:1, value: true
ID: scanbrowserhijacks, enabled:1, value: true
ID: scantrackingcookies, enabled:1, value: true
ID: closebrowsers, enabled:1, value: false
ID: folderstoscan, enabled:1, value: C:\
ID: scanrootkits, enabled:1, value: true
ID: usespywareheuristics, enabled:1, value: true
ID: extendedengine, enabled:0, value: true
ID: useheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: mild, domain: medium,mild,strict
ID: filescanningoptions, enabled:1
ID: archives, enabled:1, value: true
ID: onlyexecutables, enabled:1, value: false
ID: skiplargerthan, enabled:1, value: 20480

Scan global:
ID: global, enabled:1
ID: addtocontextmenu, enabled:1, value: true
ID: playsoundoninfection, enabled:1, value: false
ID: soundfile, enabled:0, value: *to be filled in automatically*\alert.wav

Scheduled scan settings:
<Empty>

Update settings:
ID: updates, enabled:1
ID: launchthreatworksafterscan, enabled:1, value: normal, domain: normal,off,silently
ID: displaystatus, enabled:1, value: false
ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: autodetectproxy, enabled:1, value: false
ID: useautoconfigscript, enabled:1, value: false
ID: autoconfigurl, enabled:0, value:
ID: useproxy, enabled:1, value: false
ID: proxyserver, enabled:0, value:
ID: softwareupdates, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall
ID: schedules, enabled:1, value: true
ID: updatedaily, enabled:1, value: Daily
ID: time, enabled:1, value: Sat Jan 31 07:59:00 2009
ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: false
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: false
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false
ID: updateweekly, enabled:1, value: Weekly
ID: time, enabled:1, value: Sat Jan 31 07:59:00 2009
ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly
ID: weekdays, enabled:1
ID: monday, enabled:1, value: true
ID: tuesday, enabled:1, value: false
ID: wednesday, enabled:1, value: false
ID: thursday, enabled:1, value: false
ID: friday, enabled:1, value: false
ID: saturday, enabled:1, value: true
ID: sunday, enabled:1, value: false
ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31
ID: scanprofile, enabled:1, value:
ID: auto_deal_with_infections, enabled:1, value: false

Appearance settings:
ID: appearance, enabled:1
ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource
ID: showtrayicon, enabled:1, value: true
ID: language, enabled:1, value: fr, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language

Realtime protection settings:
ID: realtime, enabled:1
ID: processprotection, enabled:1, value: true
ID: registryprotection, enabled:0, value: true
ID: networkprotection, enabled:0, value: true
ID: loadatstartup, enabled:1, value: true
ID: usespywareheuristics, enabled:0, value: true
ID: extendedengine, enabled:0, value: true
ID: useheuristics, enabled:0, value: true
ID: heuristicslevel, enabled:0, value: strict, domain: medium,mild,strict
ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant


****************************** System information ******************************
Computer name: PC-DE-JACK
Processor name: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Processor identifier: x86 Family 6 Model 15 Stepping 11
Raw info: processorarchitecture 0, processortype 586, processorlevel 6, processor revision 3851, number of processors 4
Physical memory available: 1423904768 bytes
Physical memory total: 2144567296 bytes
Virtual memory available: 2039357440 bytes
Virtual memory total: 2147352576 bytes
Memory load: 33%
Microsoft Windows Vista Ultimate Edition, 32-bit Service Pack 1 (build 6001)
Windows startup mode:

Running processes:
PID: 328 name: C:\Windows\System32\smss.exe owner: SYSTEM domain: AUTORITE NT
PID: 392 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 440 name: C:\Windows\System32\csrss.exe owner: SYSTEM domain: AUTORITE NT
PID: 448 name: C:\Windows\System32\wininit.exe owner: SYSTEM domain: AUTORITE NT
PID: 500 name: C:\Windows\System32\winlogon.exe owner: SYSTEM domain: AUTORITE NT
PID: 512 name: C:\Windows\System32\services.exe owner: SYSTEM domain: AUTORITE NT
PID: 532 name: C:\Windows\System32\lsass.exe owner: SYSTEM domain: AUTORITE NT
PID: 540 name: C:\Windows\System32\lsm.exe owner: SYSTEM domain: AUTORITE NT
PID: 692 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 748 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 880 name: C:\Windows\System32\svchost.exe owner: SERVICE LOCAL domain: AUTORITE NT
PID: 904 name: C:\Windows\System32\svchost.exe owner: SYSTEM domain: AUTORITE NT
PID: 972 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: AUTORITE NT
PID: 1020 name: C:\Windows\System32\svchost.exe owner: SERVICE RÉSEAU domain: AUTORITE NT
PID: 1136 name: C:\Windows\System32\wbem\unsecapp.exe owner: SYSTEM domain: AUTORITE NT
PID: 1220 name: C:\Windows\System32\wbem\WmiPrvSE.exe owner: SYSTEM domain: AUTORITE NT
PID: 1356 name: C:\Windows\explorer.exe owner: soft domain: PC-de-jack
PID: 1880 name: C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe owner: SYSTEM domain: AUTORITE NT
PID: 2008 name: C:\Program Files\McAfee.com\Agent\mcagent.exe owner: soft domain: PC-de-jack
PID: 1248 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: soft domain: PC-de-jack

Startup items:
Name: Google Desktop Search
imagepath: "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
Name: DellSupportCenter
imagepath: "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
Name: dscactivate
imagepath: "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
Name: BDRegion
imagepath: "C:\Program Files\Cyberlink\Shared Files\brs.exe"
Name: IAAnotif
imagepath: "C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe"
Name: SunJavaUpdateSched
imagepath: "C:\Program Files\Java\jre6\bin\jusched.exe"
Name: VolPanel
imagepath: "C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
Name: UpdReg
imagepath: "C:\Windows\UpdReg.EXE"
Name: CTxfiHlp
imagepath: "C:\Windows\system32\CTXFIHLP.EXE"
Name: UnlockerAssistant
imagepath: "C:\Program Files\Unlocker\UnlockerAssistant.exe"
Name: PDVDDXSrv
imagepath: "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
Name: mcagent_exe
imagepath: "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
Name: Ad-Watch
imagepath: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
Name: WebCheck
imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
Name: {8C7461EF-2B13-11d2-BE35-3078302C2030}
imagepath: Component Categories cache daemon
Name: {E31004D1-A431-41B8-826F-E902F9D95C81}
imagepath: Windows DreamScene
Name: {EC654325-1273-C2A9-2B7C-45D29BCE68FB}
imagepath: Deskscapes
Name: {EC654325-1273-C2A9-2B7C-45D29BCE68FD}
imagepath: Stardock Vista ControlPanel Extension
Name: {EC654325-1273-C2A9-2B7C-45D29BCE68FF}
imagepath: StardockDreamController
Name: DelayShred
imagepath: c:\PROGRA~1\mcafee\mshr\ShrCL.EXE /P2 /q C:\Users\Wild\AppData\Local\MICROS~1\Windows\TEMPOR~1\Content.IE5\9EIMX00Q\IFR_1_~1.SH!

Bootexecute items:
Name:
imagepath: autocheck autochk *

Running services:
Name: CryptSvc
displayname: Services de chiffrement
Name: DcomLaunch
displayname: Lanceur de processus serveur DCOM
Name: Eventlog
displayname: Journal d
A voir également:

2 réponses

Réponse 1 / 2
Utilisateur anonyme
2 févr. 2009 à 05:39
re-salut jette ad-Aware il ne sert plus a rien et c'est smitfraufix qui est detecté a tort comme virus
0
la petite ourse
2 févr. 2009 à 05:52
oh!! c'est GENE.
ok! pas de probleme je comprends maintenant.....
je vais vous recontacter un peu plus tard parce que j'ai un souci qui m'habite depuis déjà un moment.
je vais refaire les trucs qui m'ont permis de m'en appercevoir pour voir si votre désinfection a changé les choses...
A+
0
Réponse 2 / 2
Utilisateur anonyme
2 févr. 2009 à 06:02
ok quoi qu il y ait fait suivre dans cette conversaton elle remontera et je te rattrappe au vol

et pense a t inscrire de maniere a pouvoir suivre la conversation :)
0

Discussions similaires

numéro commençant par +14
Zackieri -
Zubz56 -

6 réponses
problème avec ad doubleclick sur android
monnalie -
bazfile -

6 réponses
dossier ms-ad ???????
remac1 -
MPMP10 -

4 réponses
Convertir une note sur 14
xCheima -
Nana -

6 réponses
comment supprimer ad.doubleclick.net
jcdeZuyd -
Malekal_morte- -

1 réponse