|
|||||||
|
|
|
 |
|
|
Strumenti |
31-08-2006, 23:37
|
#1 |
|
Member
Iscritto dal: Aug 2006
Messaggi: 119
|
Quesito
Ogni volta che faccio una scansione una scansione con AD AWARE mi trova qualcosa, oggi dopo una scansione ho viaggiato un pò per questo forum e GZO, forum di grafica, ho letto qualche giornale on line poi ho rifatto la scansione e questo è il risultato. E' normale?
Ad-Aware SE Build 1.06r1 Logfile Created on:venerdì 1 settembre 2006 0.17.15 Created with Ad-Aware SE Personal, free for private use. Using definitions file:SE1R121 28.08.2006 »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» References detected during the scan: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» MRU List(TAC index:0):9 total references Tracking Cookie(TAC index:3):1 total references »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Ad-Aware SE Settings =========================== Set : Search for negligible risk entries Set : Safe mode (always request confirmation) Set : Scan active processes Set : Scan registry Set : Deep-scan registry Set : Scan my IE Favorites for banned URLs Set : Scan my Hosts file Extended Ad-Aware SE Settings =========================== Set : Unload recognized processes & modules during scan Set : Scan registry for all users instead of current user only Set : Always try to unload modules before deletion Set : During removal, unload Explorer and IE if necessary Set : Let Windows remove files in use at next reboot Set : Delete quarantined objects after restoring Set : Include basic Ad-Aware settings in log file Set : Include additional Ad-Aware settings in log file Set : Include reference summary in log file Set : Include alternate data stream details in log file Set : Play sound at scan completion if scan locates critical objects 01-09-2006 0.17.15 - Scan started. (Full System Scan) MRU List Object Recognized! Location: : C:\Documents and Settings\user\recent Description : list of recently opened documents MRU List Object Recognized! Location: : software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct3d MRU List Object Recognized! Location: : software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct X MRU List Object Recognized! Location: : software\microsoft\directdraw\mostrecentapplication Description : most recent application to use microsoft directdraw MRU List Object Recognized! Location: : S-1-5-21-796845957-1659004503-682003330-1003\software\microsoft\internet explorer Description : last download directory used in microsoft internet explorer MRU List Object Recognized! Location: : S-1-5-21-796845957-1659004503-682003330-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru Description : list of recent programs opened MRU List Object Recognized! Location: : S-1-5-21-796845957-1659004503-682003330-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru Description : list of recently saved files, stored according to file extension MRU List Object Recognized! Location: : S-1-5-21-796845957-1659004503-682003330-1003\software\microsoft\windows\currentversion\explorer\recentdocs Description : list of recent documents opened MRU List Object Recognized! Location: : S-1-5-21-796845957-1659004503-682003330-1003\software\nico mak computing\winzip\filemenu Description : winzip recently used archives Listing running processes »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» #:1 [smss.exe] FilePath : \SystemRoot\System32\ ProcessID : 476 ThreadCreationTime : 31-08-2006 21.16.37 BasePriority : Normal #:2 [winlogon.exe] FilePath : \??\C:\WINDOWS\system32\ ProcessID : 548 ThreadCreationTime : 31-08-2006 21.16.40 BasePriority : High #:3 [services.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 596 ThreadCreationTime : 31-08-2006 21.16.41 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Sistema operativo Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Applicazione Servizi e Controller InternalName : services.exe LegalCopyright : © Microsoft Corporation. Tutti i diritti riservati. OriginalFilename : services.exe #:4 [lsass.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 608 ThreadCreationTime : 31-08-2006 21.16.41 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : LSA Shell (Export Version) InternalName : lsass.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : lsass.exe #:5 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 772 ThreadCreationTime : 31-08-2006 21.16.42 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:6 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 924 ThreadCreationTime : 31-08-2006 21.16.44 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:7 [explorer.exe] FilePath : C:\WINDOWS\ ProcessID : 1196 ThreadCreationTime : 31-08-2006 21.16.47 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Sistema operativo Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Esplora risorse InternalName : explorer LegalCopyright : © Microsoft Corporation. Tutti i diritti riservati. OriginalFilename : EXPLORER.EXE #:8 [spoolsv.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1316 ThreadCreationTime : 31-08-2006 21.16.47 BasePriority : Normal FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519) ProductVersion : 5.1.2600.2696 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Spooler SubSystem App InternalName : spoolsv.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : spoolsv.exe #:9 [sched.exe] FilePath : C:\Programmi\AntiVir PersonalEdition Classic\ ProcessID : 1492 ThreadCreationTime : 31-08-2006 21.16.49 BasePriority : Normal #:10 [avguard.exe] FilePath : C:\Programmi\AntiVir PersonalEdition Classic\ ProcessID : 1520 ThreadCreationTime : 31-08-2006 21.16.49 BasePriority : Normal #:11 [guard.exe] FilePath : C:\Programmi\ewido anti-spyware 4.0\ ProcessID : 1568 ThreadCreationTime : 31-08-2006 21.16.50 BasePriority : Normal FileVersion : 4, 0, 0, 172 ProductVersion : 4, 0, 0, 172 ProductName : ewido anti-spyware CompanyName : Anti-Malware Development a.s. FileDescription : ewido anti-spyware guard InternalName : ewido anti-spywareguard LegalCopyright : Copyright © 2005 Anti-Malware Development a.s. OriginalFilename : guard.exe #:12 [mdm.exe] FilePath : C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\ ProcessID : 1624 ThreadCreationTime : 31-08-2006 21.16.51 BasePriority : Normal FileVersion : 7.00.9466 ProductVersion : 7.00.9466 ProductName : Microsoft® Visual Studio .NET CompanyName : Microsoft Corporation FileDescription : Machine Debug Manager InternalName : mdm.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : mdm.exe #:13 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1752 ThreadCreationTime : 31-08-2006 21.16.55 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:14 [rundll32.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1820 ThreadCreationTime : 31-08-2006 21.16.56 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Sistema operativo Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Modulo di esecuzione DLL come applicazioni InternalName : rundll LegalCopyright : © Microsoft Corporation. Tutti i diritti riservati. OriginalFilename : RUNDLL.EXE #:15 [avgnt.exe] FilePath : C:\Programmi\AntiVir PersonalEdition Classic\ ProcessID : 1852 ThreadCreationTime : 31-08-2006 21.16.56 BasePriority : Normal #:16 [devldr32.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 2196 ThreadCreationTime : 31-08-2006 21.17.13 BasePriority : Normal FileVersion : 1, 0, 0, 17 ProductVersion : 1, 0, 0, 17 ProductName : Creative Ring3 NT Inteface CompanyName : Creative Technology Ltd. FileDescription : DevLdr32 InternalName : DevLdr LegalCopyright : Copyright (C) Creative Technology Ltd. 1998-2001 OriginalFilename : DevLdr32.exe #:17 [iexplore.exe] FilePath : C:\Programmi\Internet Explorer\ ProcessID : 2220 ThreadCreationTime : 31-08-2006 21.22.15 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Sistema operativo Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Internet Explorer InternalName : iexplore LegalCopyright : © Microsoft Corporation. Tutti i diritti riservati. OriginalFilename : IEXPLORE.EXE #:18 [ad-aware.exe] FilePath : C:\Programmi\Lavasoft\Ad-Aware SE Personal\ ProcessID : 2184 ThreadCreationTime : 31-08-2006 22.16.55 BasePriority : Normal FileVersion : 6.2.0.236 ProductVersion : SE 106 ProductName : Lavasoft Ad-Aware SE CompanyName : Lavasoft Sweden FileDescription : Ad-Aware SE Core application InternalName : Ad-Aware.exe LegalCopyright : Copyright © Lavasoft AB Sweden OriginalFilename : Ad-Aware.exe Comments : All Rights Reserved Memory scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 9 Started registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Registry Scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 9 Started deep registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Deep registry scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 9 Started Tracking Cookie scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Tracking Cookie Object Recognized! Type : IECache Entry Data : user@mediaplex[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:user@mediaplex.com/ Expires : 22-06-2009 2.00.00 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking cookie scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 1 Objects found so far: 10 Deep scanning and examining files (C  »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Disk Scan Result for C:\ »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 10 Scanning Hosts file...... Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts". »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Hosts file scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» 1 entries scanned. New critical objects:0 Objects found so far: 10 Performing conditional scans... »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Conditional scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 10 0.25.17 Scan Complete Summary Of This Scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Total scanning time:00.08.02.219 Objects scanned:126362 Objects identified:1 Objects ignored:0 New critical objects:1 |
|
|
|
31-08-2006, 23:58
|
#2 |
|
Senior Member
Iscritto dal: May 2005
Città: Palermo
Messaggi: 6390
|
Ciao, non c'e' niente di strano o di grave nel log di adaware che hai postato. Hai un semplicissimo tracking cookie che hai beccato in qualche sito. Per evitare i tracking cookies usa SpywareBlaster e sei a posto.
|
|
|
|
|
01-09-2006, 07:49
|
#3 |
|
Member
Iscritto dal: Aug 2006
Messaggi: 119
|
Ho installato SpywreBlaster (sountato enable all protection) ma Ad Aware continua a toovarmi tracking e a metà scansione appare finestrella Antivir che segnala TR/Obfuscated e chiede l'ok (deny access). Regolare?
|
|
|
|
|
01-09-2006, 10:21
|
#4 | |
|
Senior Member
Iscritto dal: May 2005
Città: Palermo
Messaggi: 6390
|
Quote:
http://www.hwupgrade.it/forum/showthread.php?t=1142673 |
|
|
|
|
|
|
| Strumenti | |
|
|
Tutti gli orari sono GMT +1. Ora sono le: 16:18.
