Jump to content


Photo

Virus


  • Please log in to reply
11 replies to this topic

#1 gigimon

gigimon

    Newbie

  • Members
  • Pip
  • 6 posts

Posted 16 May 2011 - 06:52 PM

I can't delete Win32.toolbar.Mediabar(815). Can someone help me?

#2 CeciliaB

CeciliaB

    Volunteer

  • Moderator
  • 7535 posts

Posted 16 May 2011 - 09:13 PM

Hi gigimon,

Please, tell us which files, including their folders, that contains "mediabar". Without that it is rather impossible for us that are not Lavasoft developers to know which toolbar that need to be removed. You can find old log files here:
XP - C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware\Logs\Scan_<date information>.log
Vista and 7 - C:\ProgramData\Lavasoft\Ad-Aware\Logs\Scan_<date information>.log

#3 gigimon

gigimon

    Newbie

  • Members
  • Pip
  • 6 posts

Posted 17 May 2011 - 09:49 PM

Hi gigimon,

Please, tell us which files, including their folders, that contains "mediabar". Without that it is rather impossible for us that are not Lavasoft developers to know which toolbar that need to be removed. You can find old log files here:
XP - C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware\Logs\Scan_<date information>.log
Vista and 7 - C:\ProgramData\Lavasoft\Ad-Aware\Logs\Scan_<date information>.log


Sorry, but I can't find any files further than Ad-Aware.
No files including log or scan

#4 gigimon

gigimon

    Newbie

  • Members
  • Pip
  • 6 posts

Posted 17 May 2011 - 09:58 PM

Hi gigimon,

Please, tell us which files, including their folders, that contains "mediabar". Without that it is rather impossible for us that are not Lavasoft developers to know which toolbar that need to be removed. You can find old log files here:
XP - C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware\Logs\Scan_<date information>.log
Vista and 7 - C:\ProgramData\Lavasoft\Ad-Aware\Logs\Scan_<date information>.log



#5 gigimon

gigimon

    Newbie

  • Members
  • Pip
  • 6 posts

Posted 17 May 2011 - 10:00 PM

Skipped items:
Description: c:\programmi\bandoo\plugins\msn\msnplugin.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: c4f95057523fdfd2f64df6512e146b96
Description: c:\programmi\bandoo\bandoores.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 29f3d8a2ece6fdf62fd74974f0176aa7
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\aimplugin.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 8c5363437967d2742b51f9223f18e2e9
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\bandoo.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: d41e353b8658f96fef547c08930aad66
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\bandoogo.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 8d81dcee10c5312097cc8339cf1cb80a
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\bandoores.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 29f3d8a2ece6fdf62fd74974f0176aa7
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\bandooui.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 616efca82616959387b2d91d649f9cf9
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\bndcore.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: ad39c1f730195d7e5a94cf07e137b62b
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\bndhook.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: a9c23fe40a3b44d462e4cb628bfc95f4
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\crashrpt.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 1501cae3dc2788e133ddc69c9db97fd0
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\extensionsmanager.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 37debd32ec7d48cd2ff5a6e50b5ec237
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\flashanimator.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: b3734d87a94fea63156f4b7e1fb42bbe
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\gifanimator.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 0912ffc4f6529b7a921094223cecf094
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\installerhelper.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 3cec1f662ebd2a121dfd3bd0768e4216
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\msnplugin.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: c4f95057523fdfd2f64df6512e146b96
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\oeplugin.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: d0782632929cfe93a3ae2666f5694560
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\preuninstall.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 3a281050f6deb64fa7e19db9c755ff92
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\bin\yahooplugin.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 27d313d219698eb2f1f3e98d14b5e6a3
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\static\ffsettings.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 4249aa6e663b20c9335f92d5771a3299
Description: c:\documents and settings\dell\impostazioni locali\temp\bandoofiles\static\setupdatamngr_searchqu.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: b658a5268cc1a80a89fa4259dfd5ebe5
Description: c:\documents and settings\dell\impostazioni locali\temp\setupdatamngr_searchqu.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: b658a5268cc1a80a89fa4259dfd5ebe5
Description: c:\programmi\bandoo\flashanimator.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: b3734d87a94fea63156f4b7e1fb42bbe
Description: c:\programmi\bandoo\gifanimator.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: 0912ffc4f6529b7a921094223cecf094
Description: c:\progra~1\bandoo\bndcore.exe Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: ad39c1f730195d7e5a94cf07e137b62b
Description: c:\progra~1\bandoo\bndhook.dll Family Name: Win32.Toolbar.Mediabar[815] Engine: 1 Clean status: Success Item ID: 0 Family ID: 0 MD5: a9c23fe40a3b44d462e4cb628bfc95f4

Removed items:
Description: *ad.yieldmanager* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409172 Family ID: 0
Description: *atdmt* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408910 Family ID: 0
Description: *doubleclick* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408875 Family ID: 0
Description: *questionmarket* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408819 Family ID: 0
Description: *serving-sys* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 409130 Family ID: 0
Description: *tradedoubler* Family Name: Cookies Engine: 1 Clean status: Success Item ID: 408964 Family ID: 0

Scan and cleaning complete: Finished correctly after 2108 seconds

#6 CeciliaB

CeciliaB

    Volunteer

  • Moderator
  • 7535 posts

Posted 17 May 2011 - 10:28 PM

c:\programmi\bandoo
Have you installed the program on the page http://www.bandoo.com/ ?
Did it install a toolbar or similar?

-----------
I have moved the topic from the forum "Ad-Aware 9.0" to "Report a False Positive" to let Lavasoft investigate if it is a false positive.

#7 gigimon

gigimon

    Newbie

  • Members
  • Pip
  • 6 posts

Posted 17 May 2011 - 10:45 PM

c:\programmi\bandoo
Have you installed the program on the page http://www.bandoo.com/ ?
Did it install a toolbar or similar?

-----------
I have moved the topic from the forum "Ad-Aware 9.0" to "Report a False Positive" to let Lavasoft investigate if it is a false positive.


Yes I think my daughter installed or downloaded something from bandoo.com. Can I delete the virus or the "false positive"? Thanks.

#8 CeciliaB

CeciliaB

    Volunteer

  • Moderator
  • 7535 posts

Posted 17 May 2011 - 11:10 PM

If it is a "false positive" you don't need to delete anything since that means that the files aren't bad. Wait 24 hours to let Lavasoft investigate the Bandoo program.

If the files really are bad, check if you can uninstall Bandoo in "Control Panel" - "Add and remove programs" (XP) or "Programs and Features" (Vista/Windows 7).

#9 LS Anders

LS Anders

    Lavasoft Staff

  • Members
  • PipPipPip
  • 559 posts

Posted 18 May 2011 - 10:32 AM

Hello

The Toolbar installed with bandoo is the Discordia Mediabar (even though it goes under another name) so this is not a false positive.


Regards
LS Anders

#10 CeciliaB

CeciliaB

    Volunteer

  • Moderator
  • 7535 posts

Posted 18 May 2011 - 01:06 PM

Then it is best to uninstall Bandoo.

#11 gigimon

gigimon

    Newbie

  • Members
  • Pip
  • 6 posts

Posted 18 May 2011 - 09:03 PM

Then it is best to uninstall Bandoo.


Can't uninstall Bandoo. The message i got is blocked process preuninstall.exe(3396). What can I do? Thanks

#12 CeciliaB

CeciliaB

    Volunteer

  • Moderator
  • 7535 posts

Posted 18 May 2011 - 11:07 PM

If you mean that Ad-Aware blocks the uninstallation, you have to turn off Ad-Aware first.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users