Help - Search - Members - Calendar
Full Version: can't delete adware
Lavasoft Support Forums > Archived Topics > Archives: Resolved/Inactive Topics > Ad-Aware SE Resolved/Inactive Issues
maczman
Jul 23 2006, 03:05 PM
Currently I'm using windows xp sp1. Everytime I scan my computer with adaware se, it always find adware.dollar revenue files. How to delete this file?

Please help..

Here are the logs



Ad-Aware SE Build 1.06r1
Logfile Created on:Sunday, July 23, 2006 9:34:24 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R115 18.07.2006
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Adware.DollarRevenue(TAC index:10):9 total references
MRU List(TAC index:0):5 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Search for low-risk threats
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


7-23-2006 9:34:24 PM - Scan started. (Full System Scan)

MRU List Object Recognized!
Location: : C:\Documents and Settings\TravelMate2701\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-1547161642-1645522239-725345543-1003\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-1547161642-1645522239-725345543-1003\software\microsoft\mediaplayer\player\settings
Description : last open directory used in jasc paint shop pro


MRU List Object Recognized!
Location: : S-1-5-21-1547161642-1645522239-725345543-1003\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 468
ThreadCreationTime : 7-22-2006 3:58:54 PM
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 516
ThreadCreationTime : 7-22-2006 3:58:55 PM
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 540
ThreadCreationTime : 7-22-2006 3:58:57 PM
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 584
ThreadCreationTime : 7-22-2006 3:58:57 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 596
ThreadCreationTime : 7-22-2006 3:58:57 PM
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [ati2evxx.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 748
ThreadCreationTime : 7-22-2006 3:58:58 PM
BasePriority : Normal


#:7 [tpsrv.exe]
FilePath : C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\
ProcessID : 776
ThreadCreationTime : 7-22-2006 3:58:58 PM
BasePriority : Normal
FileVersion : 7, 0, 0, 0
ProductVersion : 7, 0, 0, 0
ProductName : TPSrv Application
CompanyName : Panda Software
FileDescription : TPSrv Application
InternalName : TPSrv
LegalCopyright : © 2006 Panda Software. All rights reserved.
OriginalFilename : TPSrv.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 792
ThreadCreationTime : 7-22-2006 3:58:58 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [pavsrv51.exe]
FilePath : C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\
ProcessID : 844
ThreadCreationTime : 7-22-2006 3:58:59 PM
BasePriority : High
FileVersion : 2, 0, 1840, 22
ProductVersion : 2.0.1840.21
ProductName : Panda Antivirus for Windows NT/2000/XP/2003
CompanyName : Panda Software International
FileDescription : On-Access Antivirus Scanner Service.
InternalName : pavsrv.exe
LegalCopyright : © Panda Software 2006.

#:10 [avengine.exe]
FilePath : C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\
ProcessID : 864
ThreadCreationTime : 7-22-2006 3:58:59 PM
BasePriority : Normal
FileVersion : 2, 0, 1840, 26
ProductVersion : 2.0.1840.25
ProductName : Panda Antimalware File Protection
CompanyName : Panda Software International
FileDescription : Enhanced On-Access Antivirus Scanner Process.
InternalName : avengine
LegalCopyright : © Panda Software 2006.
OriginalFilename : avengine.exe

#:11 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1108
ThreadCreationTime : 7-22-2006 3:59:04 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:12 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1240
ThreadCreationTime : 7-22-2006 3:59:05 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:13 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1280
ThreadCreationTime : 7-22-2006 3:59:05 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:14 [pnmsrv.exe]
FilePath : c:\program files\panda software\panda titanium 2006 antivirus + antispyware\firewall\
ProcessID : 1404
ThreadCreationTime : 7-22-2006 3:59:06 PM
BasePriority : Normal
FileVersion : 2, 0, 4, 67
ProductVersion : 2.0.0.0
ProductName : Panda Network Manager
CompanyName : Panda Software
FileDescription : Panda Network Manager Service
InternalName : PNMSRV.exe
LegalCopyright : Copyright © 2006 Panda Software
OriginalFilename : PNMSRV.exe

#:15 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1460
ThreadCreationTime : 7-22-2006 3:59:06 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:16 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1564
ThreadCreationTime : 7-22-2006 3:59:06 PM
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:17 [mdm.exe]
FilePath : C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\
ProcessID : 1612
ThreadCreationTime : 7-22-2006 3:59:06 PM
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe

#:18 [pavfnsvr.exe]
FilePath : C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\
ProcessID : 1684
ThreadCreationTime : 7-22-2006 3:59:07 PM
BasePriority : Normal
FileVersion : 6.04.01.00
ProductVersion : 6.04.01.00
ProductName : Panda Residents
CompanyName : Panda Software International
FileDescription : Panda Function Service
InternalName : PavFnSvr
LegalCopyright : © Panda Software 2006
OriginalFilename : PAVFNSVR.EXE

#:19 [pavprsrv.exe]
FilePath : C:\Program Files\Common Files\Panda Software\PavShld\
ProcessID : 1712
ThreadCreationTime : 7-22-2006 3:59:07 PM
BasePriority : Normal
FileVersion : 1.3.0.0
ProductVersion : 1.3.0.0
ProductName : PandaShield
CompanyName : Panda Software
FileDescription : Panda Process Protection Service
InternalName : PavPrSrv
LegalCopyright : Copyright © 2004, Panda Software
OriginalFilename : PavPrSrv.exe

#:20 [psimsvc.exe]
FilePath : C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\
ProcessID : 1740
ThreadCreationTime : 7-22-2006 3:59:07 PM
BasePriority : Normal
FileVersion : 2, 6, 1, 120
ProductVersion : 2, 6, 1, 0
ProductName : Panda Antivirus
CompanyName : Panda Software
FileDescription : Panda Interface Manager Service
InternalName : PsImSvc
LegalCopyright : © Panda Software 2006.
OriginalFilename : PsImSvc.exe

#:21 [apvxdwin.exe]
FilePath : C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\
ProcessID : 2188
ThreadCreationTime : 7-22-2006 3:59:22 PM
BasePriority : Normal
FileVersion : 6.01.22
ProductVersion : 6.01.22
ProductName : Panda Antivirus Aplication
CompanyName : Panda Software International
FileDescription : ApVxdWin
InternalName : ApVxdWin.exe
LegalCopyright : © Panda Software 2006
OriginalFilename : ApVxdWin.exe

#:22 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 2276
ThreadCreationTime : 7-22-2006 3:59:22 PM
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE

#:23 [ishost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2404
ThreadCreationTime : 7-22-2006 3:59:25 PM
BasePriority : Normal


#:24 [atiptaxx.exe]
FilePath : C:\Program Files\ATI Technologies\ATI Control Panel\
ProcessID : 2420
ThreadCreationTime : 7-22-2006 3:59:25 PM
BasePriority : Normal
FileVersion : 6.14.10.5107
ProductVersion : 6.14.10.5107
ProductName : ATI Desktop Component
CompanyName : ATI Technologies, Inc.
FileDescription : ATI Desktop Control Panel
InternalName : Atiptaxx.exe
LegalCopyright : Copyright © 1998-2004 ATI Technologies Inc.
OriginalFilename : Atiptaxx.exe

#:25 [soundman.exe]
FilePath : C:\WINDOWS\
ProcessID : 2496
ThreadCreationTime : 7-22-2006 3:59:25 PM
BasePriority : Normal
FileVersion : 5.1.0.28
ProductVersion : 5.1.0.28
ProductName : Realtek Sound Manager
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Sound Manager
InternalName : ALSMTray
LegalCopyright : Copyright © 2001-2004 Realtek Semiconductor Corp.
OriginalFilename : ALSMTray.exe
Comments : Realtek AC97 Audio Sound Manager

#:26 [agrsmmsg.exe]
FilePath : C:\WINDOWS\
ProcessID : 2568
ThreadCreationTime : 7-22-2006 3:59:25 PM
BasePriority : Normal
FileVersion : 2.1.41 2.1.41 06/07/2004 10:15:45
ProductVersion : 2.1.41 2.1.41 06/07/2004 10:15:45
ProductName : Agere SoftModem Messaging Applet
CompanyName : Agere Systems
FileDescription : SoftModem Messaging Applet
InternalName : smdmstat.exe
LegalCopyright : Copyright © Agere Systems 1998-2000
OriginalFilename : smdmstat.exe

#:27 [ltmoh.exe]
FilePath : C:\Program Files\ltmoh\
ProcessID : 2632
ThreadCreationTime : 7-22-2006 3:59:26 PM
BasePriority : Normal
FileVersion : 1.71
ProductVersion : 1.71
ProductName : LtMoh Application
CompanyName : Agere Systems
FileDescription : LtMoh MFC Application
InternalName : LtMoh
LegalCopyright : Agere Copyright © 2001-2002
LegalTrademarks : Agere Systens
OriginalFilename : LtMoh.EXE

#:28 [ismon.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2760
ThreadCreationTime : 7-22-2006 3:59:26 PM
BasePriority : Normal


#:29 [lmanager.exe]
FilePath : C:\PROGRA~1\LAUNCH~1\
ProcessID : 2796
ThreadCreationTime : 7-22-2006 3:59:27 PM
BasePriority : Normal
FileVersion : 1,2,0,1
ProductVersion : 4, 15, 0, 2002
ProductName : Dritek System Inc. MMKeybd 04.15.2002 ( VC60 )
CompanyName : Dritek System Inc.
FileDescription : MultiMedia Keyboard
InternalName : MMKeybd
LegalCopyright : Copyright ?2001-2002 Dritek System Inc.
OriginalFilename : MMKeybd.exe

#:30 [ituneshelper.exe]
FilePath : C:\Program Files\iTunes\
ProcessID : 2848
ThreadCreationTime : 7-22-2006 3:59:27 PM
BasePriority : Normal
FileVersion : 5.0.1.4
ProductVersion : 5.0.1.4
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iTunesHelper Module
InternalName : iTunesHelper
LegalCopyright : © 2003-2005 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iTunesHelper.exe

#:31 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ProcessID : 2888
ThreadCreationTime : 7-22-2006 3:59:27 PM
BasePriority : Normal
FileVersion : 7.0.2
ProductVersion : QuickTime 7.0.2
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
FileDescription : QuickTime Task
InternalName : QuickTime Task
LegalCopyright : Copyright Apple Computer, Inc. 1989-2005
OriginalFilename : QTTask.exe

#:32 [msmsgs.exe]
FilePath : C:\Program Files\Messenger\
ProcessID : 2972
ThreadCreationTime : 7-22-2006 3:59:28 PM
BasePriority : Normal
FileVersion : 4.7.0041
ProductVersion : Version 4.7
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msmsgs
LegalCopyright : Copyright © Microsoft Corporation 1997-2001
LegalTrademarks : Microsoft® is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe

#:33 [ctfmon.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 3004
ThreadCreationTime : 7-22-2006 3:59:28 PM
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

#:34 [webproxy.exe]
FilePath : C:\Program Files\Panda Software\Panda Titanium 2006 Antivirus + Antispyware\
ProcessID : 3088
ThreadCreationTime : 7-22-2006 3:59:35 PM
BasePriority : Normal
FileVersion : 6, 2, 22, 33
ProductVersion : 6, 2, 16, 0
ProductName : Panda residents
CompanyName : Panda Software International
FileDescription : Internet resident proxy
InternalName : WebProxy.exe
LegalCopyright : © Panda Software 2006

#:35 [nkbmonitor.exe]
FilePath : C:\Program Files\Nikon\PictureProject\
ProcessID : 3272
ThreadCreationTime : 7-22-2006 3:59:36 PM
BasePriority : Normal
FileVersion : 1, 1, 0, 3000
ProductVersion : 1, 1, 0
ProductName : PictureProject Monitor
CompanyName : Nikon Corporation
FileDescription : PictureProject Monitor
InternalName : NkbMonitor
LegalCopyright : Copyright © Nikon Corporation. 1998 - 2004
OriginalFilename : NKBMONITOR.EXE
Comments : PictureProject Monitor

#:36 [ipodservice.exe]
FilePath : C:\Program Files\iPod\bin\
ProcessID : 1992
ThreadCreationTime : 7-22-2006 4:00:03 PM
BasePriority : Normal
FileVersion : 5.0.1.4
ProductVersion : 5.0.1.4
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iPodService Module
InternalName : iPodService
LegalCopyright : © 2003-2005 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iPodService.exe

#:37 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2336
ThreadCreationTime : 7-22-2006 4:00:13 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:38 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ProcessID : 2884
ThreadCreationTime : 7-23-2006 1:03:18 PM
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : IEXPLORE.EXE

#:39 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 1824
ThreadCreationTime : 7-23-2006 1:34:14 PM
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 5


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 5


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 5


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 5



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003563.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0318
ProductVersion : 1.00.0318
ProductName : Project1
CompanyName : mudes
InternalName : Project1
OriginalFilename : Project1.exe


Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003564.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0092
ProductVersion : 1.00.0092
ProductName : Project1
InternalName : Project1
OriginalFilename : Project1.exe


Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003574.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0028
ProductVersion : 1.00.0028
ProductName : Project1
InternalName : Project1
OriginalFilename : Project1.exe


Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003579.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0028
ProductVersion : 1.00.0028
ProductName : Project1
InternalName : Project1
OriginalFilename : Project1.exe


Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003587.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0028
ProductVersion : 1.00.0028
ProductName : Project1
InternalName : Project1
OriginalFilename : Project1.exe


Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003597.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0028
ProductVersion : 1.00.0028
ProductName : Project1
InternalName : Project1
OriginalFilename : Project1.exe


Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003605.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0028
ProductVersion : 1.00.0028
ProductName : Project1
InternalName : Project1
OriginalFilename : Project1.exe


Adware.DollarRevenue Object Recognized!
Type : File
Data : A0003648.exe
TAC Rating : 10
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP12\
FileVersion : 1.00.0121
ProductVersion : 1.00.0121
ProductName : Project1
CompanyName : ÄÂÃÌÀ
InternalName : Project1
OriginalFilename : Project1.exe


Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 13


Deep scanning and examining files (D:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Adware.DollarRevenue Object Recognized!
Type : File
Data : A0007904.exe
TAC Rating : 10
Category : Adware
Comment :
Object : D:\System Volume Information\_restore{D16CB4C1-BD60-49A2-BC54-ED0D74528834}\RP23\
FileVersion : 1.00.0253
ProductVersion : 1.00.0253
ProductName : Project1
InternalName : Project1
OriginalFilename : Project1.exe


Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 14


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 14




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 14

9:43:29 PM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:09:05.328
Objects scanned:115225
Objects identified:9
Objects ignored:0
New critical objects:9
LS CalamityJane
Jul 29 2006, 04:30 PM
Apologies for the late reply, we are a bit backlogged here as you can probably see.

Are you still needing help? I'm now subscribed to this thread and if you reply back here, I'll get an automated notice of your response and get back to you very quickly now.

I'll be glad to help if you still need us.

The items being found are in your System Restore, which is protected by Windows from 3rd party apps (like your Adaware program).

To reset your restore points, please note that you will need to log into your computer with an account which has full administrator access. You will know if the account has administrator access because you will be able to see the System Restore tab. If the tab is missing, you are logged in under a limited account.

(winXP)

1. Turn off System Restore.
Go to Start and right-click on *My Computer*.
Click Properties.
Click the System Restore tab.
Put a Checkmark in the box next to "Turn off System Restore".
Click Apply, and then click OK.

2. Reboot.

3. Turn ON System Restore.
Go to Start and right-click on *My Computer*.
Click Properties.
Click the System Restore tab.
Remove the checkmark next to "Turn off System Restore".
Click Apply, and then click OK.

How to Turn On and Turn Off System Restore in Windows XP
http://support.microsoft.com/default.aspx?...kb;en-us;310405
.....................
That said and instructions posted, you have some additional issues showing in that last log.

Could you please post a fresh Ad-Aware scan log so I can see if updated definitions may have fixed what I see in there.

Please make sure that you are using
Ad-aware SE Build 106r1
Note: If your version is 6.0 and not the SE, you need to uninstall and get the latest version from the above link.

[if not Uninstall your old Ad-aware first then install SE]
Then use the WebUpDate
to get the latest Definition file
SE1R116 24.07.2006
To do this Open Ad-aware
Click the WebUpDate
button at the top right hand side of the Ad-aware screen (The world globe).
Click "Connect"
Ad-aware will then download the latest Definition file for you.
To make sure it is updated , look at the main
Ad-aware screen, and look under "Initialization Status"
It should say the Latest Definition file.
then scan doing a "Full Scan"
and then post your logfile here by using the Add-Reply Feature .
As Logs are stored in :
C:\Documents and Settings\USERNAME\Application Data\Lavasoft\Ad-aware\Logs\.
An easy way to get there is to
click Start,
click Run
And type in and press ENTER: %appdata%
then click Lavasoft
then Ad-Aware
and then Logs.
scroll down to find the latest one that you have
(by date & time)
and open it right Click select all
copy and then paste the contents of it here.
(Make sure that all of your Logfile has been posted, sometimes it will require two post's to get it all)
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2009 Invision Power Services, Inc.