Bonjour,
je viens de mettre à jour le logiciel adwcleaner et je viens d'effectuer une analyse.
est ce que la clé se situant dans le registre est un faux positif ?
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet setting
merci d'avance pour votre réponse
Bonjour,
AdwCleaner v4.110 et la nouvelle version v4.111 mentionnent 3 clés appartenant à AVS dont je reprend le contenu partiel ci-dessous.
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeClassesCLSID{28C02550-6572-401a-A2AE-5BC703C9BBA6}InprocServer32]
@="C:Program Files (x86)Common FilesAVSMediaActiveXAVSAudioDXPlayer3.dll"
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeClassesCLSID{A1CCCE0D-AE21-42A2-BE58-8E6109410995}InprocServer32]
@="C:Program Files (x86)Common FilesAVSMediaActiveXAVSAudioDxPlayer4.dll"
[HKEY_LOCAL_MACHINESOFTWAREWow6432NodeClassesCLSID{CD4D7B0F-45C6-4bb2-A1E7-54D1754E7FC5}InprocServer32]
@="C:Program Files (x86)Common FilesAVSMediaActiveXAVSAudioDXTransform3.dll"
Je pense qu'il s'agit de faux positifs car ces clés semblent nécessaires.
D'avance merci
Je confirme :
La suppression du dossier "C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\***.default\Extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}" enlève le module de Firefox HTML Validator et la supression du dossier "C:\Users\***\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna" "casse" sans enlever le module de Chrome New Tab Redirect.
Ça se corrige facilement, mais ce n'est pas très propre pour ce petit utilitaire sympathique.
Not responding when scanning web browsers.I have to kill process in Task Manager. I don't know if it is connected,
but recently I updated Avast. Windows 7 x86
Bonjour malgré la derniere version d'AdwCleaner il y a toujours 3 faux positifs concerant 3 logiciels sain.
Il s'agit de LastPass (je n ai pas de rapport car un ami m a dit qu il y avait faux positifs.
Concernant les 2 autres il s'agit d'IDM http://www.internetdownloadmanager.com/download.html
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : [x64] HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
et de la nouvelle version 15 de Driver Genius http://www.driver-soft.com/
Dossier Trouvé : C:\Program Files (x86)\driver-soft
Dossier Trouvé : C:\ProgramData\drivergenius
Dossier Trouvé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\driver genius
Fichier Trouvé : C:\Users\m\Desktop\Driver Genius.lnk
***** [ Tâches planifiées ] *****
***** [ Raccourcis ] *****
***** [ Registre ] *****
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Clé Trouvée : HKLM\SOFTWARE\Driver-Soft
Clé Trouvée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Driver Genius_is1
McAfee seems to have a problem with the newest update. It quarantines the exe file. Please see this thread:
https://community.mcafee.com/thread/78134
Got rid of 'Client.exe"...very happy... this file was killing my Firefox browser with "ad.doubleclick.net"...would not let me browse...Adware,Malware,Defender did not detect "Client.exe"..thank you!..*john wjbr@sympatico.ca
False positives (it's a legitimate VPN extension):
C:\Users\User\AppData\Local\Hola
HKLM\SOFTWARE\Google\Chrome\Extensions\ncffjdbbodifgldkcbhmiiljfcbgjag
If I remember correctly there's also a false positive for the Hola Unblocker Firefox add-on. However, the Firefox add-on stopped working for me - possibly due to AdwCleaner cleaning away files needed for it to work - and re-installing it doesn't help, so I can't submit a report for that add-on. The add-on can be installed from here if anyone wants to have a look at it: http://hola.org/
The following entries are false positives:
C:\Documents and Settings\User\Application Data\ProgSense (included with some software to look for updates - nothing malicious or deceiving)
C:\Documents and Settings\User\Application Data\Simple Adblock (adblocker now known as Adblock Plus knowingly installed by user for Internet Explorer)
C:\Documents and Settings\User\Local Settings\Application Data\Hola (knowingly installed by user)
HKCU\Software\ProgSense (included with some software to look for updates - nothing malicious or deceiving)
HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762} (belongs to ZoomBrowser EX, a Canon camera utility)
The following are proxy settings knowingly added by user:
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - socks=localhost:1234
Thanks in advance for correcting the issue.
bonjour meme avec la version 4.110 il y a toujours un faux positif pour le logiciel IDM (Internet Download Manager http://www.internetdownloadmanager.com/download.html ) si on supprime les clé de registre affichés cela demande ensuite de reinstaller IDM et on a toujours ce faux positif Rapport pour IDM:
Clé Trouvée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : [x64] HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Clé Trouvée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}
egalement faux positif pour les logiciel Lastpass https://lastpass.com/misc_download2.php et faux positif pour le logiciel Driver Genius http://www.driver-soft.com/
Get Malwarebytes for powerful protection against adware and threats.
Get Malwarebytes Now