 Crash Error 6000 |
Lavasoft Support Forums > Archived Topics > Archives: Resolved/Inactive Topics > Resolved/Inactive General Support Issues  |
 Jul 22 2007, 08:09 AM
Post
#1
|
|
|
Newbie  Group: Members Posts: 2 Joined: 22-July 07 Member No.: 33,197  |
Hi. Can somebody help with an error that keeps occuring:
Service Error 6000: Lost connection with adaware service It seems to occur during scanning files but not the same part of the file system every time I have tried with internet connection and without, and with and without antivirus running(AVG). I am running Ad-aware 2007 Free v. 0009.0000 updated 21/07/07 22:13 on Win XP SP2 fully updated and IE7 A copy of the crash log attached. There is an unidentified virus/adware infection on the computer possibly related to Navipromo which I am trying to resolve through another forum. The person dealing with the problem asked me to run Ad-aware. Bushy This post has been edited by Bushy: Jul 22 2007, 11:08 AM
Attached File(s)
|
 |
 
|
|
Jul 22 2007, 10:45 PM
Post
#2
|
|
|
Newbie Group: Members Posts: 2 Joined: 22-July 07 Member No.: 33,197 |
Update:
Have managed to remove some files related to the infection - thanks to Jean at Malwarebytes - and successfully run Ad-Aware. The offending files were C:\windows\system32\ gohgfhaaya.dat gohgfhaaya.exe gohgfhaaya_nav.dat gohgfhaaya_navps.dat The files are not visible to Windows Explorer in normal mode but are visible and can be deleted in safe mode. We are not sure this has cleaned the infection completely. AdAware didn't find much - log below: Ad-Aware 2007 Build Log File Created on: 2007-07-22 22:31:34 Using Definitions File: C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware 2007\core.aawdef Computer name: DF8D2D1J Name of user performing scan: SYSTEM System information =========================== Number of processors: 1 Processor type: Intel® Pentium® M processor 1.60GHz Memory Available: 24% Total Physical Memory: 534994944 Bytes Available Physical Memory: 126619648 Bytes Total Page File Size: 1308155904 Bytes Available On Page File: 744308736 Bytes Total Virtual Memory: 2147352576 Bytes Available Virtual Memory: 1993908224 Bytes OS: Microsoft Windows XP Service Pack 2 (Build 2600) Ad-Aware 2007 Settings =========================== Skipping files larger than 1048576 kB Ignoring infections with lower TAI than: 3 Extended Ad-Aware 2007 Settings =========================== Unloading known modules during scan Ignoring spanned files when scanning cab archives Reanalyzing results after scanning before displaying results Trying to unload modules prior to removal Let Windows remove files currently in use at next reboot Removing quarantined objects after restore Deactivating Ad-Watch during scans Writeprotecting system files after repairs Include info about ignored objects in log file Including basic settings in log file Including advanced settings in log file Including user and computer name in log file Create and save WebUpdate log file Databaseinfo =========================== Version number: 9 Build Number: 0 Build Date and Time: 2007/07/16 08:53:54 Scan Statistics =========================== Method: Full Scan tracking cookies.............................: On Scan ADS filestreams..............................: Off Item Scanned: 170774 Infections Detected: 7 Infections Ignored: 0 Scan detailed statistics =========================== Type Critical Total Process Scan....: 0 0 Registry Scan...: 0 0 Registry PE Scan: 0 0 Hosts File Scan.: 0 0 File Scan.......: 0 0 Folder Scan.....: 0 0 LSP Scan........: 0 0 ADS Scan........: 0 0 Cookie Scan.....: 5 5 File Hash Scan..: 0 0 Infections Found =========================== Family Id: 725 Name: Tracking Cookie Category: DataMiner TAI:3 Item Id: 600000050 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\jean\Cookies\index.dat tribalfusion.com ANON_ID / Item Id: 600000460 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\jean\Cookies\index.dat ad.yieldmanager.com uid / Item Id: 600000460 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\jean\Cookies\index.dat ad.yieldmanager.com crfb / Item Id: 600000460 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\jean\Cookies\index.dat ad.yieldmanager.com vuday1 / Item Id: 600000460 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\jean\Cookies\index.dat ad.yieldmanager.com ih / Family Id: 9999 Name: MRU Object Category: MRU Object TAI:0 Item Id: 1 Value: MRU Path: C:\Documents and Settings\jean\Recent Count: 4 Item Id: 3 Value: MRU Registry Key: S-1-5-21-1305153199-1465807469-2791770948-1006\Software\Microsoft\Internet Explorer\TypedURLs Count: 5 Items Ignored During Scan =========================== Listing of running processes =========================== C:\WINDOWS\SYSTEM32\SMSS.EXE c:\windows\system32\smss.exe c:\windows\system32\ntdll.dll C:\WINDOWS\SYSTEM32\CSRSS.EXE c:\windows\system32\csrss.exe c:\windows\system32\ntdll.dll c:\windows\system32\csrsrv.dll c:\windows\system32\basesrv.dll c:\windows\system32\winsrv.dll c:\windows\system32\gdi32.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\sxs.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll C:\WINDOWS\SYSTEM32\WINLOGON.EXE c:\windows\system32\winlogon.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\authz.dll c:\windows\system32\msvcrt.dll c:\windows\system32\crypt32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\msasn1.dll c:\windows\system32\nddeapi.dll c:\windows\system32\profmap.dll c:\windows\system32\netapi32.dll c:\windows\system32\userenv.dll c:\windows\system32\psapi.dll c:\windows\system32\regapi.dll c:\windows\system32\secur32.dll c:\windows\system32\setupapi.dll c:\windows\system32\version.dll c:\windows\system32\winsta.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\imm32.dll c:\windows\system32\msgina.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\comctl32.dll c:\windows\system32\odbc32.dll c:\windows\system32\comdlg32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll c:\windows\system32\odbcint.dll c:\windows\system32\shsvcs.dll c:\windows\system32\sfc.dll c:\windows\system32\sfc_os.dll c:\windows\system32\ole32.dll c:\windows\system32\apphelp.dll c:\windows\system32\msctfime.ime c:\windows\system32\winscard.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\sxs.dll c:\windows\system32\uxtheme.dll c:\windows\system32\winmm.dll c:\windows\system32\avgwlntf.dll c:\windows\system32\msvcr71.dll c:\windows\system32\rsaenh.dll c:\windows\system32\cscdll.dll c:\windows\system32\wlnotify.dll c:\windows\system32\winspool.drv c:\windows\system32\mpr.dll c:\windows\system32\wgalogon.dll c:\windows\system32\oleaut32.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\lgnotify.dll c:\windows\system32\cscui.dll c:\windows\system32\msv1_0.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\drprov.dll c:\windows\system32\ntlanman.dll c:\windows\system32\netui0.dll c:\windows\system32\netui1.dll c:\windows\system32\netrap.dll c:\windows\system32\davclnt.dll c:\windows\system32\mprui.dll c:\windows\system32\netui2.dll c:\windows\system32\netmsg.dll c:\windows\system32\wdmaud.drv c:\windows\system32\msacm32.drv c:\windows\system32\msacm32.dll c:\windows\system32\midimap.dll C:\WINDOWS\SYSTEM32\SERVICES.EXE c:\windows\system32\services.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\userenv.dll c:\windows\system32\scesrv.dll c:\windows\system32\authz.dll c:\windows\system32\umpnpmgr.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\windows\system32\ncobjapi.dll c:\windows\system32\msvcp60.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\secur32.dll c:\windows\system32\apphelp.dll c:\windows\system32\eventlog.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\psapi.dll c:\windows\system32\wtsapi32.dll C:\WINDOWS\SYSTEM32\LSASS.EXE c:\windows\system32\lsass.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\lsasrv.dll c:\windows\system32\mpr.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\msasn1.dll c:\windows\system32\msvcrt.dll c:\windows\system32\netapi32.dll c:\windows\system32\ntdsapi.dll c:\windows\system32\dnsapi.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\wldap32.dll c:\windows\system32\secur32.dll c:\windows\system32\samlib.dll c:\windows\system32\samsrv.dll c:\windows\system32\cryptdll.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll Bushy 
|
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
|
Lo-Fi Version | Time is now: 31st July 2010 - 11:22 PM |