False detection with latest Adaware update?

Started by Mannen, August 11, 2005, 09:33:51 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

Mannen

August 11, 2005, 09:33:51 PM
Hi all!


I helped a user and it seems that Adaware removed a windows file with the lastest update (SE1R61 10.08.2005).
After that he lost his search function in Windows. So you all know

Quotebegin2search Object Recognized!
Type : File
Data : msxml3r.dll
TAC Rating : 3
Category : Data Miner
Comment :
Object : C:\WINDOWS\System32\
FileVersion : 8.20.8730.1
ProductVersion : 8.20.8730.1
ProductName : Microsoft Data Access Components
CompanyName : Microsoft Corporation
FileDescription : XML Resources
InternalName : MSXML3R.dll
LegalCopyright : Copyright © Microsoft Corporation. 1981-2000
OriginalFilename : MSXML3R.dll

Cheers
Mannen

Corrine

#1
August 11, 2005, 10:25:21 PM
Thanks, Mannen.  I quoted your post at BBR since that seems to be where LS R&D watches for issues. 
See http://www.broadbandreports.com/forum/remark,14113563


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

#2
August 11, 2005, 11:03:11 PM
Mannen, LS_SteveJ has responded at BBR asking me to let you know that they are "on the case". 

Did you have the person restore from quarantine and in doing so, did that result in the recovery of the search function in Windows?


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

winchester73

#3
August 12, 2005, 12:55:57 AM
Same on this 2k box ...
Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member

Mannen

#4
August 12, 2005, 06:38:08 AM
Corrine

I asked him to copy the lost file first from the dllcache folder to the right folder. If that doesnt help i will ask him to restore the objects Adaware removed (a lot)

Corrine

#5
August 12, 2005, 11:18:16 AM
To anyone following this thread, it has been confirmed as a f/p.  See Steve's reply in that thread. 

Mannen, thanks! 


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

winchester73

#6
August 12, 2005, 12:05:03 PM
NIce of LS SteveJ to confirm what we already knew ...  :shock:

Ad-Aware scans find NOTHING on this box, NEVER ... when this latest def file uncovered something, what do you suppose the logical conclusion is? In fact, the last time a scan found something, it was, guess what?  (Hint:  false positive)

Nice work Mannen ...  :gwave:
Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member

Jason

#7
August 12, 2005, 02:24:38 PM
Well done on swift reporting Mannen :thumbsup:, as it was discovered only minutes earlier during "nightshift" in our "icebear" timezone... :lol:

I'm proud to be a staffmember and one of the participants on your forum Mate... :mrgreen:
In a perfect world, spammers would get caught, go to jail, and share a cell with many men who have enlarged something, taken Viagra and are looking for a new relationship.

EASTER

#8
August 12, 2005, 06:47:26 PM
Likewise Mannen, fine heads up and great instincts, you're a credit to this community and valuable in your help to others. Again Thanks.

Mannen

#9
August 12, 2005, 07:30:57 PM
Thanks all! :D

Without you all wonderful people I shouldn't be where I am today

Corrine

#10
August 12, 2005, 09:38:15 PM
We all learn from each other! 


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.
Print
Go Up Pages1
User actions