Based solely on the subject line (which there were search engine problems), Ad-Aware AE is reporting on another computer similar hits in three different places within the registry. I too have no idea if these are false positives or not. Not much to really go on. I'm using the most recent version of everything that is Ad-Aware AE.

Most of the forums I've visited allow their users to see attachments. However, here I can't see the attached file to compare whether those hits are the same as mine. Should I be able to see the attachment? Is there an account problem?

Hi Boyce,

The following are the reg keys in question:

Description: HKU:s-1-5-18\software\microsoft\internet explorer\toolbar\webbrowser:{01e04581-4eee-11d0-bfe9-00aa005b4383} Family Name: Win32.TrojanDownloader.NewMedia Clean status: Success Item ID: 39819 Family ID: 1017

Description: HKU:S-1-5-21-678163020-390391676-1500187115-1004\software\microsoft\windows\currentversion\policies\explorer:nodrives Family Name: Win32.TrojanDownloader.NewMedia Clean status: Success Item ID: 39774 Family ID: 1017

Description: HKU:.default\software\microsoft\internet explorer\toolbar:locked Family Name: Win32.TrojanDownloader.NewMedia Clean status: Success Item ID: 39817 Family ID: 1017

Description: HKU:s-1-5-18\software\microsoft\internet explorer\toolbar:locked Family Name: Win32.TrojanDownloader.NewMedia Clean status: Success Item ID: 39818 Family ID: 1017

It would be best, that if you experience any scan detection issues of a different kind,
to describe that in a new post.

Cheers

Hi kulaworld,

Thanks for posting the information you provided earlier in the clear so that others could compare results. I don't know why attachments are not allowed to be seen. This situation is a perfect example of why attachments should be made available to view by others. Question, can you view your own attachments?

If we look at your post and assign descending numbers to the list, what I see here is item one, three and four. These are exact matches. Item two does not show up.

BTW, how did you get such detailed information so that you could include it into your post?

What I mean is, if I do a scan the log is blank with this kind of information, even though the GUI shows the hits. That makes the Log file very pointless. The best I can do is right-click on a hit (after expanding it) in the GUI and select 'Copy to Clipboard', but that only copies the location of the hit.

Could it be that we are using different versions of Ad-Aware? I'm using Ad-Aware A.E. and it would not surprise me that this is another limitation of A.E. over previous versions.

I'm beginning to think that A.E. is a spelling error, that it should have been M.E., if you know what I mean.

Hi Boyce,

One way to view a scan log file, open Ad-Aware GUI and click on "Statistics" Tab,
set "Display" to the date you want (wich highlights the "Export Scan Log") button
at the bottom of page.
Click the button and name the file (.........txt) and save it to e.g. "My Documents".

Now you can view the details of the scan/s and also upload the file to your post.
On how to do that please refer to the pinned LS Andy Post.

I also have AE and I am VERY happy with it.

Again, I suggest you open your own post with your specific scan details.
Best way to have your problems attended to.

Cheers

Hi kulaworld,



The Statistics tab doesn't do all that much over here. Upon starting AE, the Statistics tab starts with "Total Statistics" highlighted and the display is blank. In the drop-down, beneath "Total Statistics", are two date entries. Both of these date entries are blank. I find that odd considering that each scan produces the same hits and I have performed the scan over 25 times since AE was installed 5 days ago. So, not only are there missing days in the drop-down, but the information contained is empty. I've already raised the issue that there are logging deficiencies, this further highlights it.



Considering the previous version I had, I would be hesitant to recommend this version at its current development level. I don't know if I would call it a rush job, but there are, in some cases, obvious problems. Perhaps they're obvious to me, but then that's my job.



You're not suggesting that the only way to get anything accomplished around here is to raise the same issue over and over again with new threads?

Hmm, perhaps that is the way. I noticed after downloading def 020 and 021 that both of these continue to report the Win32.TrojanDownloader.NewMedia.

BTW, you didn't mention whether you could view your own attachment.

Hi Boyce,

No, I cannot view any attachments.
And I'm glad that people's privacy is beeing protected!

May I suggest that you raise any general issues/problems with the Lavasoft Support Team
or post latter under the forum "Ad-Aware AE".
Feel free to report any suspect FPs in a separate post in this forum.

Cheers

Hi kulaworld,

Just to be clear, I have seen my fair share of forum account creation screw ups over the many years. I primarily wanted to make sure that things were working the way they were suppose to work, privacy or not.

I have already raised the logging issue, as well as other concerns, in the Ad-Aware AE forum. Some have already been verified.

To get back on topic; the Win32.TrojanDownloader.NewMedia that you first reported on 2009-02-11 in a different thread is still occurring with the two most recent def files. I thought you might appreciate the confirmation.

Yes, I am well aware if I need to start a new thread over a new False Positive, I shall. Besides some misc cookies, I am only receiving the oddball Win32.TrojanDownloader.NewMedia after a scan.

Considering that the Win32.TrojanDownloader.NewMedia is the only thing being found of any significance at this time and this thread covers that topic, I figured it was most appropriate to post my concerns here instead of creating a different thread. When the day comes that something new pops up, I assure you I will again look for a previous thread to add my concerns. And, if one is not found, I will create a new one.

Have a nice day.

This discussion was split from the original thread. Please note that in the False Positives forum, members can upload files for Staff review, however, members cannot download attachments in this False Positives forum for your safety reasons.

If you have a false positive you would like to report, please follow the instructions here and post a new topic:
http://www.lavasoftsupport.com/index.php?showtopic=18033

I'm closing this thread now and moving to the archives (read only). If you are still having issues, please feel free to start a new topic.