Jump to content


Photo

keep finding malware


  • Please log in to reply
3 replies to this topic

#1 acerzr2

acerzr2

    Newbie

  • Members
  • Pip
  • 2 posts

Posted 07 June 2006 - 02:02 AM

I use AdAware SE personal and System Mechanic 6 along with a couple of other programs to keep spyware and other malware off of my computer. Lately I have noticed that I keep finding the same reg files being found by these programs. What is weird is, if I run AdAware first, and it finds NOTHING, then run System Mechanic, System mech. will find these 5 reg files...

HKEY_CLASSES_ROOT: batfile\shell\open\command""(notepad.exe %1)
HKEY_CLASSES_ROOT: comfile\shell\open\command""(notepad.exe %1)
HKEY_CLASSES_ROOT: piffile\shell\open\command""(notepad.exe %1)
HKEY_CLASSES_ROOT: regfile\shell\open\command""(notepad.exe %1)
HKEY_CLASSES_ROOT: scrfile\shell\open\command""(notepad.exe %1)

So I repair these files. Then I run AdAware again, and guess what? That's right, these same 5 files are now found by AdAware, even though it found NOTHING when I ran it before!

The same thing happens if I run System Mech. first, then AdAware second. Can someone explain this to me and suggest what to do. Is my computer at risk? Thanks in advance.

#2 acerzr2

acerzr2

    Newbie

  • Members
  • Pip
  • 2 posts

Posted 09 June 2006 - 12:33 AM

Can anyone help? This is really bugging me.

#3 alleyes

alleyes

    Newbie

  • Members
  • Pip
  • 1 posts

Posted 29 October 2006 - 08:14 PM

Can anyone help? This is really bugging me.


If you run System Mechanic it's own security scripts will add these;


HKEY_CLASSES_ROOT:regfile\shell\open\command\notepad.exe %1

HKEY_CLASSES_ROOT:scrfile\shell\open\command\notepad.exe %1

One reason that Adawares is removing these scripts is because it thinks it
is a security vulnerability, and system mechanic will automatically put
the scripts back in.
Secondly, if Adawares removes them, System Mechanic will throw up these
reg files as being missing or corrupted and fix same.

Solution: Set Adawares to ignore these scripts, they are NOT Malware and
part of the System Mechanic security procedures.

Hope this helps

#4 GadeTerbob

GadeTerbob

    Newbie

  • Members
  • Pip
  • 3 posts

Posted 05 July 2007 - 02:51 AM

Thanks!! This helped me, too!!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users