Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Ad-Aware SE 1.06

Started by mazaprin , May 31 2005 10:32 AM

  • This topic is locked This topic is locked

#1
mazaprin
Posted 31 May 2005 - 10:32 AM

mazaprin

    Member

  • Member
  • PipPip
  • 16 posts
:tazz: It happened with the previous version 1.05 the scans showed lavasoft.de as a "Possible Host File Hijacker" (a false positive) and then I guess this issue was solved along with the next spyware list updates.

Now that I have downloaded and installed version 1.06 this problem arised again (I don't know if other people are experien cing this same problem), Scans bring a False Positive identifying Lavasoft as a Host File Hijacker.

I don't know if this issue will be solved again with the next spyware list updates or not. I have Emailed Lavasoft Technical Support to make them aware of this problem and I am expecting a response from them within 48 hrs.

Meanwhile I am posting this Issue here just to know if some of you have experienced the same problem with version 1.06 and how did you solve it.
  • 0

Advertisements

#2
Guest_Andy_veal_*
Posted 31 May 2005 - 10:50 AM

Guest_Andy_veal_*
  • Guest
Do you have a logfile if possible?
  • 0

#3
mazaprin
Posted 31 May 2005 - 05:47 PM

mazaprin

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
Hi Andy_veal and thatnks for your reply. this is the Log entry you requested.
Look at the END of the Log file for the results of the Host File scan and you will see
lavasoft.de named as a Bad Host File hijacker


Ad-Aware SE Build 1.06r1
Logfile Created on:Tuesday, May 31, 2005 7:21:30 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R49 31.05.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):15 total references
Redirected hostfile entry(TAC index:4):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Search for low-risk threats
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


5-31-2005 7:21:30 PM - Scan started. (Full System Scan)

MRU List Object Recognized!
Location: : C:\Documents and Settings\HERIBERTO MAZA\Application Data\microsoft\office\recent
Description : list of recently opened documents using microsoft office


MRU List Object Recognized!
Location: : C:\Documents and Settings\HERIBERTO MAZA\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\windows\currentversion\applets\regedit
Description : last key accessed using the microsoft registry editor


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\windows\currentversion\applets\wordpad\recent file list
Description : list of recent files opened using wordpad


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-73586283-706699826-1957994488-1004\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 524
ThreadCreationTime : 5-31-2005 10:44:33 PM
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 584
ThreadCreationTime : 5-31-2005 10:44:37 PM
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 608
ThreadCreationTime : 5-31-2005 10:44:38 PM
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 652
ThreadCreationTime : 5-31-2005 10:44:38 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 664
ThreadCreationTime : 5-31-2005 10:44:38 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 860
ThreadCreationTime : 5-31-2005 10:44:39 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 920
ThreadCreationTime : 5-31-2005 10:44:40 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 948
ThreadCreationTime : 5-31-2005 10:44:40 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1008
ThreadCreationTime : 5-31-2005 10:44:40 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1036
ThreadCreationTime : 5-31-2005 10:44:40 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1212
ThreadCreationTime : 5-31-2005 10:44:41 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [schedul2.exe]
FilePath : C:\Program Files\Common Files\Acronis\Schedule2\
ProcessID : 1312
ThreadCreationTime : 5-31-2005 10:44:43 PM
BasePriority : Normal
FileVersion : 1,0,0,31
ProductVersion : 1,0,0,31
ProductName : Acronis Scheduler 2
CompanyName : Acronis
FileDescription : Acronis Scheduler 2
InternalName : Scheduler2
LegalCopyright : Copyright © 2000-2003 Acronis
LegalTrademarks : Acronis
OriginalFilename : schedul2.exe
Comments : Acronis Scheduler 2

#:13 [aolacsd.exe]
FilePath : C:\PROGRA~1\COMMON~1\AOL\ACS\
ProcessID : 1324
ThreadCreationTime : 5-31-2005 10:44:44 PM
BasePriority : Normal


#:14 [dkservice.exe]
FilePath : D:\Program Files\Executive Software\Diskeeper\
ProcessID : 1416
ThreadCreationTime : 5-31-2005 10:44:45 PM
BasePriority : Normal
FileVersion : 9.0.504.0
ProductVersion : 9.0.504.0
ProductName : Diskeeper ™ Disk Defragmenter
CompanyName : Executive Software International, Inc.
FileDescription : DKSERVICE.EXE
InternalName : DKSERVICE
LegalCopyright : © 1995-2004 Executive Software Int'l, Inc.
OriginalFilename : DKSERVICE

#:15 [appservices.exe]
FilePath : C:\PROGRA~1\Iomega\System32\
ProcessID : 1444
ThreadCreationTime : 5-31-2005 10:44:47 PM
BasePriority : Normal
FileVersion : 2, 0, 2, 5
ProductVersion : 2, 0, 2, 5
ProductName : Iomega App Services
CompanyName : Iomega Corporation
FileDescription : AppServices
InternalName : AppServices
LegalCopyright : Copyright © 2000
OriginalFilename : AppService.exe
Comments : Iomega App Services For Windows 2000/NT

#:16 [nvsvc32.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1504
ThreadCreationTime : 5-31-2005 10:44:48 PM
BasePriority : Normal
FileVersion : 6.13.10.3050
ProductVersion : 6.13.10.3050
ProductName : NVIDIA Driver Helper Service, Version 30.50
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 30.50
InternalName : NVSVC
LegalCopyright : © NVIDIA Corporation. All rights reserved.
OriginalFilename : nvsvc32.exe

#:17 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1628
ThreadCreationTime : 5-31-2005 10:44:49 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:18 [tmntsrv.exe]
FilePath : D:\Program Files\Trend Micro\Internet Security\
ProcessID : 1744
ThreadCreationTime : 5-31-2005 10:44:49 PM
BasePriority : Normal
FileVersion : 11.41.0.5021
ProductVersion : 11.41.0
ProductName : Trend Pc-cillin 11
CompanyName : Trend Micro Incorporated.
FileDescription : Tmntsrv
InternalName : Tmntsrv
LegalCopyright : Copyright © 1995-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro Incorporated.
OriginalFilename : Tmntsrv.exe

#:19 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1768
ThreadCreationTime : 5-31-2005 10:44:49 PM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE

#:20 [tmproxy.exe]
FilePath : D:\Program Files\Trend Micro\Internet Security\
ProcessID : 1824
ThreadCreationTime : 5-31-2005 10:44:50 PM
BasePriority : Normal
FileVersion : 11.40.0.5015
ProductVersion : 11.40.0
ProductName : Trend Pc-cillin 11
CompanyName : Trend Micro Incorporated.
FileDescription : TmProxy.exe
InternalName : TmProxy.exe
LegalCopyright : Copyright © 1995-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro Incorporated.
OriginalFilename : TmProxy.exe

#:21 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1904
ThreadCreationTime : 5-31-2005 10:44:52 PM
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: DNSRV(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe

#:22 [adservice.exe]
FilePath : C:\Program Files\Iomega\AutoDisk\
ProcessID : 1952
ThreadCreationTime : 5-31-2005 10:44:52 PM
BasePriority : Normal
FileVersion : 3, 2, 1, 5
ProductVersion : 3, 2, 1, 5
ProductName : Iomega Active Disk
CompanyName : Iomega Corporation
FileDescription : Active Disk Service
InternalName : ADService
LegalCopyright : Copyright © 2002
OriginalFilename : ADService.exe

#:23 [pccpfw.exe]
FilePath : D:\Program Files\Trend Micro\Internet Security\
ProcessID : 428
ThreadCreationTime : 5-31-2005 10:44:53 PM
BasePriority : Normal
FileVersion : 11.40.0.5015
ProductVersion : 11.40.0
ProductName : Trend Pc-cillin 11
CompanyName : Trend Micro Incorporated.
FileDescription : PCCPFW
InternalName : PCCPFW
LegalCopyright : Copyright © 1995-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro Incorporated.
OriginalFilename : PCCPFW.exe

#:24 [tgcmd.exe]
FilePath : C:\program files\support.com\client\bin\
ProcessID : 784
ThreadCreationTime : 5-31-2005 10:44:58 PM
BasePriority : Normal
FileVersion : 5,0,429,0
ProductVersion : 5,0,429,0
ProductName : tgcmd Module
CompanyName : Support.com, Inc.
FileDescription : tgcmd Module
InternalName : TGCMD
LegalCopyright : Copyright 1997-2069 Support.com
OriginalFilename : TGCMD.DLL

#:25 [tmoagent.exe]
FilePath : D:\Program Files\Trend Micro\Internet Security\
ProcessID : 996
ThreadCreationTime : 5-31-2005 10:44:59 PM
BasePriority : Normal
FileVersion : 11.40.0.5015
ProductVersion : 11.40.0
ProductName : Trend Pc-cillin 11
CompanyName : Trend Micro Incorporated.
FileDescription : TrendMicro Outbreak agent
InternalName : TMOAgent
LegalCopyright : Copyright © 1995-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro Incorporated.
OriginalFilename : TMOAgent.EXE

#:26 [jusched.exe]
FilePath : C:\Program Files\Java\jre1.5.0_02\bin\
ProcessID : 1260
ThreadCreationTime : 5-31-2005 10:44:59 PM
BasePriority : Normal


#:27 [pcclient.exe]
FilePath : D:\Program Files\Trend Micro\Internet Security\
ProcessID : 1424
ThreadCreationTime : 5-31-2005 10:44:59 PM
BasePriority : Normal
FileVersion : 11.40.0.5015
ProductVersion : 11.40.0
ProductName : Trend Pc-cillin 11
CompanyName : Trend Micro Incorporated.
FileDescription : PCClient
InternalName : PCClient
LegalCopyright : Copyright © 1995-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro Incorporated.
OriginalFilename : PCClient

#:28 [pccguide.exe]
FilePath : D:\Program Files\Trend Micro\Internet Security\
ProcessID : 1552
ThreadCreationTime : 5-31-2005 10:45:00 PM
BasePriority : Normal
FileVersion : 11.40.0.5015
ProductVersion : 11.40.0
ProductName : Trend Pc-cillin 11
CompanyName : Trend Micro Incorporated.
FileDescription : PCCGuide
InternalName : PCCGuide
LegalCopyright : Copyright © 1995-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro Incorporated.
OriginalFilename : PCCGuide

#:29 [ico.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1604
ThreadCreationTime : 5-31-2005 10:45:00 PM
BasePriority : Normal
FileVersion : 1, 0, 0, 7
ProductVersion : 1.0.0.0
ProductName : MouseSuite 98
CompanyName : Primax Electronics Ltd.
FileDescription : Mouse Suite 98 Daemon
InternalName : pelmiced.exe
LegalCopyright : Copyright © 1997, Primax Electronics Ltd.
LegalTrademarks : Primax Electronics Ltd.

#:30 [imgicon.exe]
FilePath : D:\Program Files\Iomega\DriveIcons\
ProcessID : 1916
ThreadCreationTime : 5-31-2005 10:45:02 PM
BasePriority : Normal


#:31 [apoint.exe]
FilePath : C:\Program Files\Apoint\
ProcessID : 2080
ThreadCreationTime : 5-31-2005 10:45:02 PM
BasePriority : Normal
FileVersion : 5.5.7.136
ProductVersion : 5.5.7.136
ProductName : Alps Pointing-device Driver
CompanyName : Alps Electric Co., Ltd.
FileDescription : Alps Pointing-device Driver
InternalName : Alps Pointing-device Driver
LegalCopyright : Copyright © 1999-2003 Alps Electric Co., Ltd.
OriginalFilename : Apoint.exe

#:32 [adusermon.exe]
FilePath : C:\Program Files\Iomega\AutoDisk\
ProcessID : 2088
ThreadCreationTime : 5-31-2005 10:45:02 PM
BasePriority : Normal
FileVersion : 3, 2, 1, 5
ProductVersion : 3, 2, 1, 5
ProductName : Iomega Active Disk
CompanyName : Iomega Corporation
FileDescription : Active Disk User Monitor
InternalName : ADUserMon
LegalCopyright : Copyright © 2002
OriginalFilename : ADUserMon.exe

#:33 [trueimagemonitor.exe]
FilePath : D:\Program Files\Acronis\TrueImage\
ProcessID : 2096
ThreadCreationTime : 5-31-2005 10:45:03 PM
BasePriority : Normal
FileVersion : 7,0,0,634
ProductVersion : 7,0,0,634
ProductName : Acronis True Image
CompanyName : Acronis
FileDescription : TrueImage
InternalName : TrueImageMonitor
LegalCopyright : Copyright © 2000-2003 Acronis.
LegalTrademarks : Acronis
OriginalFilename : TrueImageMonitor.exe
Comments : Acronis True Image

#:34 [schedhlp.exe]
FilePath : C:\Program Files\Common Files\Acronis\Schedule2\
ProcessID : 2108
ThreadCreationTime : 5-31-2005 10:45:04 PM
BasePriority : Normal
FileVersion : 1,0,0,30
ProductVersion : 1,0,0,30
ProductName : Acronis Scheduler Helper
CompanyName : Acronis
FileDescription : Acronis Scheduler Helper
InternalName : Scheduler Helper
LegalCopyright : Copyright © 2000-2003 Acronis
LegalTrademarks : Acronis
OriginalFilename : schedhlp.exe
Comments : Acronis Scheduler Helper

#:35 [aoldial.exe]
FilePath : C:\Program Files\Common Files\AOL\ACS\
ProcessID : 2164
ThreadCreationTime : 5-31-2005 10:45:08 PM
BasePriority : Normal
FileVersion : 2.0.20.1.US.1
ProductVersion : 2.0.20.1.US.1
ProductName : AOL Connectivity Service
CompanyName : America Online, Inc
FileDescription : AOL Connectivity Service Dialer
LegalCopyright : Copyright © 2003 America Online, Inc.
OriginalFilename : AOLDial.exe

#:36 [apntex.exe]
FilePath : C:\Program Files\Apoint\
ProcessID : 2304
ThreadCreationTime : 5-31-2005 10:45:12 PM
BasePriority : Normal
FileVersion : 5.0.1.15
ProductVersion : 5.0.1.15
ProductName : Alps Pointing-device Driver for Windows NT/2000/XP
CompanyName : Alps Electric Co., Ltd.
FileDescription : Alps Pointing-device Driver for Windows NT/2000/XP
InternalName : Alps Pointing-device Driver for Windows NT/2000/XP
LegalCopyright : Copyright © 1998-2003 Alps Electric Co., Ltd.
OriginalFilename : ApntEx.exe

#:37 [tmtray.exe]
FilePath : D:\PROGRA~1\TWEAKM~1\
ProcessID : 2336
ThreadCreationTime : 5-31-2005 10:45:13 PM
BasePriority : Normal
FileVersion : 2.04 Build 764
ProductVersion : 2.04 Build 764
ProductName : TweakMASTER
CompanyName : Hagel Technologies
FileDescription : TweakMASTER Agent
LegalCopyright : Copyright © 2003-2004 Hagel Technologies
OriginalFilename : TMTRAY.EXE

#:38 [staycon.exe]
FilePath : C:\Program Files\inKline Global\Stay Connected!\
ProcessID : 2396
ThreadCreationTime : 5-31-2005 10:45:14 PM
BasePriority : Normal
FileVersion : 4.01
ProductVersion : 4.01
ProductName : Stay Connected!
CompanyName : INKLINE SOFTWARE LABS
FileDescription : Stay Connected!
InternalName : Stay Connected!
LegalCopyright : Copyright © 1996-2002. INKLINE SOFTWARE LABS. All Rights Reserved.
LegalTrademarks : Stay Connected!
OriginalFilename : StayCon.exe
Comments : Product Development by INKLINE SOFTWARE LABS

#:39 [gcasserv.exe]
FilePath : D:\Program Files\Microsoft AntiSpyware\
ProcessID : 2516
ThreadCreationTime : 5-31-2005 10:45:18 PM
BasePriority : Idle
FileVersion : 1.00.0509
ProductVersion : 1.00.0509
ProductName : Microsoft AntiSpyware (Beta 1)
CompanyName : Microsoft Corporation
FileDescription : Microsoft AntiSpyware Service
InternalName : gcasServ
LegalCopyright : Copyright © 2004-2005 Microsoft Corporation. All rights reserved.
LegalTrademarks : Microsoft® and Windows® are registered trademarks of Microsoft Corporation. SpyNet™ is a trademark of Microsoft Corporation.
OriginalFilename : gcasServ.exe

#:40 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2664
ThreadCreationTime : 5-31-2005 10:45:20 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:41 [memoptimizer.exe]
FilePath : D:\Program Files\TuneUp Utilities 2004\
ProcessID : 2832
ThreadCreationTime : 5-31-2005 10:45:42 PM
BasePriority : Normal
FileVersion : 1.0.0.193
ProductVersion : 4.0.0.0
ProductName : TuneUp Utilities
CompanyName : TuneUp Software GmbH
FileDescription : TuneUp MemOptimizer
LegalCopyright : © 1996-2003 TuneUp Software GmbH
LegalTrademarks : TuneUp Utilities

#:42 [clipomatic.exe]
FilePath : D:\Program Files\Clipomatic\
ProcessID : 2848
ThreadCreationTime : 5-31-2005 10:45:43 PM
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Clipomatic2
FileDescription : Clipomatic2
InternalName : Clipomatic2
LegalCopyright : Copyright © 1999
OriginalFilename : Clipomatic2.exe

#:43 [idman.exe]
FilePath : D:\Program Files\Internet Download Manager\
ProcessID : 2888
ThreadCreationTime : 5-31-2005 10:45:45 PM
BasePriority : Normal
FileVersion : 4, 0, 4, 2
ProductVersion : 4, 0, 4, 2
ProductName : Internet Download Manager (IDM)
CompanyName : Internet Download Manager Corp., Tonec Inc.
FileDescription : Internet Download Manager Application (IDM)
InternalName : Internet Download Manager
LegalCopyright : Copyright © 2003
OriginalFilename : IDMan.exe

#:44 [ww.exe]
FilePath : D:\Program Files\Weather Watcher\
ProcessID : 2900
ThreadCreationTime : 5-31-2005 10:45:47 PM
BasePriority : Normal
FileVersion : 5.05.0005
ProductVersion : 5.05.0005
ProductName : Weather Watcher
CompanyName : Singer's Creations
InternalName : ww
LegalCopyright : Copyright © 2005 Mike Singer
OriginalFilename : ww.exe
Comments : http://www.SingersCreations.com

#:45 [accountlogon.exe]
FilePath : D:\Program Files\AccountLogon\
ProcessID : 2992
ThreadCreationTime : 5-31-2005 10:45:55 PM
BasePriority : Normal
FileVersion : 2.05.0001
ProductVersion : 2.05.0001
ProductName : AccountLogon
CompanyName : Rhodes Software Pty Ltd
FileDescription : AccountLogon (www.accountlogon.com)
InternalName : AccountLogon
LegalCopyright : Copyright © 2001-2003 Rhodes Software Pty Ltd. All Rights Reserved.
LegalTrademarks : Copyright © 2001-2003 Rhodes Software Pty Ltd. All Rights Reserved.
OriginalFilename : AccountLogon.exe
Comments : Copyright © 2001-2003 Rhodes Software Pty Ltd. All Rights Reserved.

#:46 [gcasdtserv.exe]
FilePath : D:\Program Files\Microsoft AntiSpyware\
ProcessID : 3324
ThreadCreationTime : 5-31-2005 10:45:58 PM
BasePriority : Normal
FileVersion : 1.00.0509
ProductVersion : 1.00.0509
ProductName : Microsoft AntiSpyware (Beta 1)
CompanyName : Microsoft Corporation
FileDescription : Microsoft AntiSpyware Data Service
InternalName : gcasDtServ
LegalCopyright : Copyright © 2004-2005 Microsoft Corporation. All rights reserved.
LegalTrademarks : Microsoft® and Windows® are registered trademarks of Microsoft Corporation. SpyNet™ is a trademark of Microsoft Corporation.
OriginalFilename : gcasDtServ.exe

#:47 [wmiprvse.exe]
FilePath : C:\WINDOWS\System32\wbem\
ProcessID : 3500
ThreadCreationTime : 5-31-2005 10:46:10 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : Wmiprvse.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : Wmiprvse.exe

#:48 [aoltray.exe]
FilePath : D:\Program Files\America Online 9.0\
ProcessID : 3756
ThreadCreationTime : 5-31-2005 10:46:44 PM
BasePriority : Normal
FileVersion : 9.00.001
ProductVersion : 9.00.001
ProductName : America Online
CompanyName : America Online, Inc.
FileDescription : AOL Tray Icon
InternalName : AolTray
LegalCopyright : Copyright © America Online, Inc. 1999 - 2004

#:49 [hpohmr08.exe]
FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 3780
ThreadCreationTime : 5-31-2005 10:46:46 PM
BasePriority : Normal
FileVersion : 4.2.0.020
ProductVersion : 2.4.1.020
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet COM Device Objects
InternalName : HPOHMR08
LegalCopyright : Copyright © Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOHMR08.EXE
Comments : HP OfficeJet <Homer> Series COM Device Objects

#:50 [hpotdd01.exe]
FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 3792
ThreadCreationTime : 5-31-2005 10:46:46 PM
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Hewlett-Packard hpotdd01
CompanyName : Hewlett-Packard
FileDescription : hpotdd01
InternalName : hpotdd01
LegalCopyright : Copyright © 2002
OriginalFilename : hpotdd01.exe

#:51 [iam.exe]
FilePath : C:\Program Files\CallWave\
ProcessID : 3824
ThreadCreationTime : 5-31-2005 10:46:49 PM
BasePriority : Normal
FileVersion : 3.07.4 (3-September-2004)
ProductVersion : 3.07.4 (3-September-2004)
ProductName : CallWave Service
CompanyName : CallWave, Inc.
FileDescription : Internet Answering Machine
InternalName : CallApp
LegalCopyright : Copyright © 1999-2003 CallWave, Inc.
OriginalFilename : CallApp.exe

#:52 [windates.exe]
FilePath : D:\Program Files\WinDates\
ProcessID : 3856
ThreadCreationTime : 5-31-2005 10:46:52 PM
BasePriority : Normal
FileVersion : 5, 1, 0, 0
ProductVersion : 5, 1, 0, 0
ProductName : WinDates
CompanyName : Rockin' Software
FileDescription : WinDates
InternalName : WinDates
LegalCopyright : Copyright © 2004
OriginalFilename : WinDates.exe

#:53 [wallmast.exe]
FilePath : D:\Program Files\WallMaster\
ProcessID : 3888
ThreadCreationTime : 5-31-2005 10:46:54 PM
BasePriority : Normal
FileVersion : 4.0.1.1
ProductVersion : 4.0a
ProductName : WallMaster Pro
CompanyName : Tropical Wares
FileDescription : WallMaster Pro version 4.0a
InternalName : wallmast
LegalCopyright : Copyright © 1998-2002 by Tropical Wares. All Rights Reserved.
LegalTrademarks : Copyright © 1998-2002 by Tropical Wares. All Rights Reserved.
OriginalFilename : wallmast.exe
Comments : Master your desktop wallpaper in just a few minutes!

#:54 [waol.exe]
FilePath : D:\Program Files\America Online 9.0\
ProcessID : 3904
ThreadCreationTime : 5-31-2005 10:46:55 PM
BasePriority : Normal


#:55 [hpoevm08.exe]
FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\
ProcessID : 3912
ThreadCreationTime : 5-31-2005 10:46:55 PM
BasePriority : Normal
FileVersion : 4.2.0.020
ProductVersion : 2.4.1.020
ProductName : hp digital imaging - hp all-in-one series
CompanyName : Hewlett-Packard Co.
FileDescription : HP OfficeJet COM Event Manager
InternalName : HPOEVM08
LegalCopyright : Copyright © Hewlett-Packard Co. 1995-2001
OriginalFilename : HPOEVM08.EXE
Comments : HP OfficeJet COM Event Manager

#:56 [shellmon.exe]
FilePath : D:\Program Files\America Online 9.0\
ProcessID : 2068
ThreadCreationTime : 5-31-2005 10:47:30 PM
BasePriority : Normal


#:57 [gurunet.exe]
FilePath : D:\Program Files\GuruNet\
ProcessID : 3536
ThreadCreationTime : 5-31-2005 11:10:52 PM
BasePriority : Normal
FileVersion : 5.1 (build 1400)
ProductVersion : 5.1 (build 1400)
ProductName : GuruNet
CompanyName : GuruNet Corporation
FileDescription : GuruNet Client
InternalName : GNClient
LegalCopyright : Copyright © GuruNet Corporation 1999-2004
OriginalFilename : GNClient.exe

#:58 [agtserv.exe]
FilePath : C:\PROGRA~1\COMMON~1\GURUNE~1\
ProcessID : 3544
ThreadCreationTime : 5-31-2005 11:10:53 PM
BasePriority : Normal
FileVersion : 6.1 (build 1400)
ProductVersion : 6.1 (build 1400)
ProductName : ScreenScraper SDK
CompanyName : GuruNet Corporation
FileDescription : AgtServ main executable
InternalName : AgtServ
LegalCopyright : Copyright © GuruNet Corporation 1999-2004
OriginalFilename : AgtServ.exe

#:59 [ad-aware.exe]
FilePath : D:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 188
ThreadCreationTime : 5-31-2005 11:21:21 PM
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15


Deep scanning and examining files (D:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 15


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Warning!
Bad Hosts file entry:209.87.177.249:www.lavasoft.de


Redirected hostfile entry Object Recognized!
Type : Hosts file
Data : 209.87.177.249
TAC Rating : 4
Category : Misc
Comment : Possible hostsfile hijack (General definition for our servers)
Bad Hostfile entry : 209.87.177.249:www.lavasoft.de

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
51 entries scanned.
New critical objects:1
Objects found so far: 16




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 16

7:35:19 PM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:13:48.962
Objects scanned:142860
Objects identified:1
Objects ignored:0
New critical objects:1
  • 0

#4
Guest_Andy_veal_*
Posted 01 June 2005 - 05:35 PM

Guest_Andy_veal_*
  • Guest
That IP address is not Lavasofts!

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
51 entries scanned.


If your system is running a program which changes the hosts file or you have added listings to the hosts file then there is no need to check further. Otherwise, please download the "Host File Viewer" by Option^Explicit. It is a 65K program which will allow you to find/view/open/read/edit/restore to default settings your HOST file. Instructions are on the display screen of the program. Select the option to restore to default settings.
http://members.acces...sFileReader.zip
  • 0
Back to Lavasoft Support (Ad-aware) · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Lavasoft Support (Ad-aware)

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP