Adaware

Secure Home | Search | About

Lost Password?

Anti-Virus Software

get this group's latest topics as an RSS feed

add this group's latest topics to your My MSN content

add this group's latest topics to your My Yahoo content

add this group's latest topics to your Google content

Subject

Author

Date

Adaware

02-19-2006

Re: Adaware

David H. Lipman

02-19-2006

Re: Adaware

Jake Dodd

02-19-2006

Re: Adaware

02-19-2006

Re: Adaware

02-19-2006

Re: Adaware

Jake Dodd

02-20-2006

Re: Adaware

02-20-2006

Re: Adaware

02-20-2006

Re: Adaware

Jake Dodd

02-20-2006

Re: Adaware

(PeteCresswell)

02-20-2006

Re: Adaware

* * Chas

02-20-2006

Re: Adaware

Jake Dodd

02-21-2006

Re: Adaware

BoB

02-21-2006

Re: Adaware

Jake Dodd

02-22-2006

Re: Adaware

BoB

02-23-2006

Re: Adaware

02-25-2006

Posted by mc on February 19, 2006, 6:01 pm

If you were Registered and logged in, you could reply and use other advanced thread options

Hello I ran KAV and Ad-aware and Ad-aware came back with this;

Name:Windows
Category:Vulnerability
Object Type:RegData
Size:15 Bytes
Location:regfile\shell\open\command "" (notepad.exe %1)
Last Activity:2-19-2006
Relevance:Low
TAC index:3
Comment:Possible virus infection, REG file extension compromised
Description:General Windows Security Issue. Your system security may be
compromised. The specifics of the possible compromised item are listed in
the comments section.

Does anyone know what this is? I had Ad-aware delete it then I ran sys mech
6 comprehensive check up, rebooted and ran Ad-aware again. Ad-aware showed
this same reg file as a problem a second time.
thanks mc

Posted by David H. Lipman on February 19, 2006, 6:52 pm

If you were Registered and logged in, you could reply and use other advanced thread options

| Hello I ran KAV and Ad-aware and Ad-aware came back with this;
|
| Name:Windows
| Category:Vulnerability
| Object Type:RegData
| Size:15 Bytes
| Location:regfile\shell\open\command "" (notepad.exe %1)
| Last Activity:2-19-2006
| Relevance:Low
| TAC index:3
| Comment:Possible virus infection, REG file extension compromised
| Description:General Windows Security Issue. Your system security may be
| compromised. The specifics of the possible compromised item are listed in
| the comments section.
|
| Does anyone know what this is? I had Ad-aware delete it then I ran sys mech
| 6 comprehensive check up, rebooted and ran Ad-aware again. Ad-aware showed
| this same reg file as a problem a second time.
| thanks mc
|

It looks like it is reacting to an alteration in the file association of a .REG
file.

Let Ad-aware correct the alteration.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

Posted by Jake Dodd on February 19, 2006, 8:43 pm

If you were Registered and logged in, you could reply and use other advanced thread options

> Hello I ran KAV and Ad-aware and Ad-aware came back with this;

> Name:Windows

> Category:Vulnerability

> Object Type:RegData

> Size:15 Bytes

> Location:regfile\shell\open\command "" (notepad.exe %1)

> Last Activity:2-19-2006

> Relevance:Low

> TAC index:3

> Comment:Possible virus infection, REG file extension compromised

> Description:General Windows Security Issue. Your system security may be

> compromised. The specifics of the possible compromised item are listed in

> the comments section.

> Does anyone know what this is? I had Ad-aware delete it then I ran sys mech

> 6 comprehensive check up, rebooted and ran Ad-aware again. Ad-aware showed

> this same reg file as a problem a second time.

> thanks mc

Personally, I wouldn't want the registry association for .reg files to be the
correct
"regedit.exe %1" and would change it to "notepad.exe %1" for security reasons.
If any .reg files were doubleclicked it would now open notepad and display the
contents of the registry patch in notepad instead of altering the registry.

The patch could still be imported via the command line.

Are you sure you don't have some sort of automated security here?

Posted by mc on February 19, 2006, 9:23 pm

If you were Registered and logged in, you could reply and use other advanced thread options

I noticed that when I let Ad-aware do its 'fix' then sys mech 6 shows only
a fair rating on the home page when first opened. So then I let sys mech run
a comprehensive checkup to get a 'good' safety light on the home page.
So if I run Ad-aware again the same info comes back as in my first post. I
wonder if sys mech 6 is doing this reg file setup?
However I do remember changing a reg setting somewhere that would clear the
page file on shut down.
mc

Posted by mc on February 19, 2006, 9:31 pm

If you were Registered and logged in, you could reply and use other advanced thread options

I just read this at iolo, I wonder if this is the cause?
mc
http://www.iolo.com/customercare/kbarticle.aspx?id=KBA-01449

Similar Threads	Posted
Adaware Problem	July 20, 2005, 5:19 pm
AdAware SE update?	January 4, 2006, 3:32 pm
Adaware will not finish	December 9, 2006, 2:11 pm
ADAWARE 2007	June 19, 2007, 10:51 pm
AdAware 1.06 conflict with F-Prot 3.16b	June 6, 2005, 10:31 pm
Adaware definitions "588 days old" ???	December 5, 2006, 10:25 am
Is this trojan adaware-created?	October 3, 2008, 9:51 am
AdAware found regkey items...advice?	April 6, 2006, 3:05 am
Adaware error whist scanning problem	July 19, 2007, 11:43 am
Adaware and Spybot preventing 3Com card from working	November 19, 2005, 9:06 am

The site map in XML format XML site map