Sign in to follow this  
baljeetbuttar

This cookie is not going away no matter what......

Recommended Posts

Hello everyone

 

been trying to reach support using the built in support link. Lavasoft technical support havent answered my 1 single quesiton. Whats going on?

I have purchased full version of LAVASOFT pro anniversary edition. But cant seem to get rid of this one stuburn cookie please help. I am pasting my log file below please help me.

 

 

 

My system restore is disabled.

I have no toolbars installed except yahoo toolbar

I have ran scan many times using ad-aware but same cookie keep coming up even after fixing it. I did some research on google also then gave up due to lack of time. So thought about posting here why am i paying for this software if it cant do the job it suppose to do?

 

 

Logfile created: 6/6/2009 14:16:15

Lavasoft Ad-Aware version: 8.0.5

Extended engine version: 8.1

User performing scan: Administrator

 

*********************** Definitions database information ***********************

Lavasoft definition file: 148.46

Extended engine definition file: 8.1

 

******************************** Scan results: *********************************

Scan profile name: Default Profile (ID: defaultprofile)

Objects scanned: 72748

Objects detected: 1

 

 

Type Detected

==========================

Processes.......: 0

Registry entries: 0

Hostfile entries: 0

Files...........: 0

Folders.........: 0

LSPs............: 0

Cookies.........: 1

Browser hijacks.: 0

MRU objects.....: 0

 

 

 

Removed items:

Description: *ad.yieldmanager* Family Name: Cookies Clean status: Success Item ID: 409172 Family ID: 0

 

Scan and cleaning complete: Finished correctly after 925 seconds

 

*********************************** Settings ***********************************

 

Scan profile:

ID: defaultprofile, enabled:1, value: Default Profile

ID: scancriticalareas, enabled:1, value: true

ID: scanrunningapps, enabled:1, value: true

ID: scanregistry, enabled:1, value: true

ID: scanlsp, enabled:1, value: true

ID: scanads, enabled:1, value: true

ID: scanhostsfile, enabled:1, value: true

ID: scanmru, enabled:1, value: true

ID: scanbrowserhijacks, enabled:1, value: true

ID: scantrackingcookies, enabled:1, value: true

ID: closebrowsers, enabled:1, value: false

ID: folderstoscan, enabled:1, value: C:\

ID: scanrootkits, enabled:1, value: true

ID: usespywareheuristics, enabled:1, value: true

ID: extendedengine, enabled:1, value: true

ID: useheuristics, enabled:1, value: true

ID: heuristicslevel, enabled:1, value: mild, domain: medium,mild,strict

ID: filescanningoptions, enabled:1

ID: archives, enabled:1, value: true

ID: onlyexecutables, enabled:1, value: false

ID: skiplargerthan, enabled:1, value: 20480

 

Scan global:

ID: global, enabled:1

ID: addtocontextmenu, enabled:1, value: true

ID: playsoundoninfection, enabled:1, value: false

ID: soundfile, enabled:0, value: *to be filled in automatically*\alert.wav

 

Scheduled scan settings:

<Empty>

 

Update settings:

ID: updates, enabled:1

ID: launchthreatworksafterscan, enabled:1, value: normal, domain: normal,off,silently

ID: displaystatus, enabled:1, value: false

ID: deffiles, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall

ID: autodetectproxy, enabled:1, value: false

ID: useautoconfigscript, enabled:1, value: false

ID: autoconfigurl, enabled:0, value:

ID: useproxy, enabled:1, value: false

ID: proxyserver, enabled:0, value:

ID: softwareupdates, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall

ID: licenseandinfo, enabled:1, value: downloadandinstall, domain: dontcheck,downloadandinstall

ID: schedules, enabled:1, value: true

ID: updatedaily, enabled:1, value: Daily

ID: time, enabled:1, value: Sun May 31 04:15:00 2009

ID: frequency, enabled:1, value: daily, domain: daily,monthly,once,systemstart,weekly

ID: weekdays, enabled:1

ID: monday, enabled:1, value: false

ID: tuesday, enabled:1, value: false

ID: wednesday, enabled:1, value: false

ID: thursday, enabled:1, value: false

ID: friday, enabled:1, value: false

ID: saturday, enabled:1, value: false

ID: sunday, enabled:1, value: false

ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31

ID: scanprofile, enabled:1, value:

ID: auto_deal_with_infections, enabled:1, value: false

ID: updateweekly, enabled:1, value: Weekly

ID: time, enabled:1, value: Sun May 31 04:15:00 2009

ID: frequency, enabled:1, value: weekly, domain: daily,monthly,once,systemstart,weekly

ID: weekdays, enabled:1

ID: monday, enabled:1, value: true

ID: tuesday, enabled:1, value: false

ID: wednesday, enabled:1, value: false

ID: thursday, enabled:1, value: false

ID: friday, enabled:1, value: false

ID: saturday, enabled:1, value: false

ID: sunday, enabled:1, value: true

ID: monthly, enabled:1, value: 1, minvalue: 1, maxvalue: 31

ID: scanprofile, enabled:1, value:

ID: auto_deal_with_infections, enabled:1, value: false

 

Appearance settings:

ID: appearance, enabled:1

ID: skin, enabled:1, value: default.egl, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Resource

ID: showtrayicon, enabled:1, value: true

ID: language, enabled:1, value: en, reglocation: HKEY_LOCAL_MACHINE\SOFTWARE\Lavasoft\Ad-Aware\Language

 

Realtime protection settings:

ID: realtime, enabled:1

ID: processprotection, enabled:1, value: true

ID: registryprotection, enabled:1, value: true

ID: networkprotection, enabled:1, value: true

ID: loadatstartup, enabled:1, value: true

ID: usespywareheuristics, enabled:1, value: true

ID: extendedengine, enabled:1, value: true

ID: useheuristics, enabled:1, value: true

ID: heuristicslevel, enabled:1, value: strict, domain: medium,mild,strict

ID: infomessages, enabled:1, value: onlyimportant, domain: display,dontnotify,onlyimportant

 

 

****************************** System information ******************************

Computer name: BALJEETHPZD8000

Processor name: Intel® Pentium® 4 CPU 3.60GHz

Processor identifier: x86 Family 15 Model 4 Stepping 1

Raw info: processorarchitecture 0, processortype 586, processorlevel 15, processor revision 1025, number of processors 2

Physical memory available: 1233170432 bytes

Physical memory total: 2145890304 bytes

Virtual memory available: 1967542272 bytes

Virtual memory total: 2147352576 bytes

Memory load: 42%

Microsoft Windows XP Professional Service Pack 3 (build 2600)

Windows startup mode:

 

Running processes:

PID: 740 name: \SystemRoot\System32\smss.exe owner: SYSTEM domain: NT AUTHORITY

PID: 808 name: \??\C:\WINDOWS\system32\csrss.exe owner: SYSTEM domain: NT AUTHORITY

PID: 836 name: \??\C:\WINDOWS\system32\winlogon.exe owner: SYSTEM domain: NT AUTHORITY

PID: 880 name: C:\WINDOWS\system32\services.exe owner: SYSTEM domain: NT AUTHORITY

PID: 892 name: C:\WINDOWS\system32\lsass.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1048 name: C:\WINDOWS\system32\Ati2evxx.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1068 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1128 name: C:\WINDOWS\system32\svchost.exe owner: NETWORK SERVICE domain: NT AUTHORITY

PID: 1184 name: C:\WINDOWS\System32\svchost.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1284 name: C:\WINDOWS\system32\svchost.exe owner: NETWORK SERVICE domain: NT AUTHORITY

PID: 1316 name: C:\WINDOWS\system32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY

PID: 1676 name: C:\WINDOWS\system32\spoolsv.exe owner: SYSTEM domain: NT AUTHORITY

PID: 584 name: C:\WINDOWS\system32\svchost.exe owner: LOCAL SERVICE domain: NT AUTHORITY

PID: 620 name: C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe owner: SYSTEM domain: NT AUTHORITY

PID: 640 name: C:\Program Files\AskBarDis\bar\bin\AskService.exe owner: SYSTEM domain: NT AUTHORITY

PID: 664 name: C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe owner: SYSTEM domain: NT AUTHORITY

PID: 648 name: C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe owner: SYSTEM domain: NT AUTHORITY

PID: 700 name: C:\WINDOWS\eHome\ehRecvr.exe owner: SYSTEM domain: NT AUTHORITY

PID: 776 name: C:\WINDOWS\eHome\ehSched.exe owner: SYSTEM domain: NT AUTHORITY

PID: 812 name: C:\WINDOWS\system32\HPZipm12.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1204 name: C:\WINDOWS\system32\svchost.exe owner: SYSTEM domain: NT AUTHORITY

PID: 1236 name: C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe owner: SYSTEM domain: NT AUTHORITY

PID: 496 name: C:\WINDOWS\system32\wbem\wmiprvse.exe owner: SYSTEM domain: NT AUTHORITY

PID: 536 name: C:\WINDOWS\System32\alg.exe owner: LOCAL SERVICE domain: NT AUTHORITY

PID: 2132 name: C:\WINDOWS\system32\dllhost.exe owner: SYSTEM domain: NT AUTHORITY

PID: 2264 name: C:\WINDOWS\system32\Ati2evxx.exe owner: SYSTEM domain: NT AUTHORITY

PID: 2388 name: C:\WINDOWS\Explorer.EXE owner: Administrator domain: BALJEETHPZD8000

PID: 2912 name: C:\WINDOWS\ehome\ehtray.exe owner: Administrator domain: BALJEETHPZD8000

PID: 2924 name: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe owner: Administrator domain: BALJEETHPZD8000

PID: 2932 name: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe owner: Administrator domain: BALJEETHPZD8000

PID: 2948 name: C:\WINDOWS\eHome\ehmsas.exe owner: Administrator domain: BALJEETHPZD8000

PID: 2956 name: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe owner: Administrator domain: BALJEETHPZD8000

PID: 2980 name: C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3012 name: C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3048 name: C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3164 name: C:\Program Files\InterVideo\DVD Check\DVDCheck.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3184 name: C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3276 name: C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3512 name: C:\Program Files\Messenger\msmsgs.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3556 name: C:\WINDOWS\system32\ctfmon.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3656 name: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3784 name: C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE owner: Administrator domain: BALJEETHPZD8000

PID: 264 name: C:\Program Files\HPQ\shared\hpqwmi.exe owner: SYSTEM domain: NT AUTHORITY

PID: 4156 name: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe owner: SYSTEM domain: NT AUTHORITY

PID: 5384 name: C:\Program Files\Bonjour\mDNSResponder.exe owner: SYSTEM domain: NT AUTHORITY

PID: 2532 name: C:\Program Files\iPod\bin\iPodService.exe owner: SYSTEM domain: NT AUTHORITY

PID: 4648 name: C:\Program Files\iTunes\iTunesHelper.exe owner: Administrator domain: BALJEETHPZD8000

PID: 288 name: C:\Program Files\Vuze\Azureus.exe owner: Administrator domain: BALJEETHPZD8000

PID: 1720 name: C:\Program Files\VideoLAN\VLC\vlc.exe owner: Administrator domain: BALJEETHPZD8000

PID: 3632 name: C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe owner: Administrator domain: BALJEETHPZD8000

PID: 796 name: C:\Program Files\Internet Explorer\iexplore.exe owner: Administrator domain: BALJEETHPZD8000

PID: 4288 name: C:\Program Files\Internet Explorer\iexplore.exe owner: Administrator domain: BALJEETHPZD8000

PID: 4320 name: C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe owner: SYSTEM domain: NT AUTHORITY

PID: 3408 name: C:\WINDOWS\system32\wbem\unsecapp.exe owner: SYSTEM domain: NT AUTHORITY

PID: 4436 name: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe owner: Administrator domain: BALJEETHPZD8000

PID: 5164 name: C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe owner: Administrator domain: BALJEETHPZD8000

 

Startup items:

Name: PostBootReminder

imagepath: {7849596a-48ea-486e-8937-a2a3009f31a9}

Name: CDBurn

imagepath: {fbeb8a05-beee-4442-804e-409d6c4515e9}

Name: WebCheck

imagepath: {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

Name: SysTray

imagepath: {35CEC8A3-2BE6-11D2-8773-92E220524153}

Name: ehTray

imagepath: C:\WINDOWS\ehome\ehtray.exe

Name: SynTPLpr

imagepath: C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

Name: SynTPEnh

imagepath: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

Name: ATIPTA

imagepath: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

Name: TrueImageMonitor.exe

imagepath: C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

Name: AcronisTimounterMonitor

imagepath: C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe

Name: Acronis Scheduler2 Service

imagepath: "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"

Name: Cpqset

imagepath: C:\Program Files\HPQ\Default Settings\cpqset.exe  çenÙÂ| àý

çB H<C Â

Name: WatchDog

imagepath: C:\Program Files\InterVideo\DVD Check\DVDCheck.exe

Name: eabconfg.cpl

imagepath: C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start

Name: UpdateManager

imagepath: "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

Name: hpWirelessAssistant

imagepath: C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe

Name: Ad-Watch

imagepath: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

Name: Adobe Reader Speed Launcher

imagepath: "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

Name: QuickTime Task

imagepath: "C:\Program Files\QuickTime\QTTask.exe" -atboottime

Name: iTunesHelper

imagepath: "C:\Program Files\iTunes\iTunesHelper.exe"

Name: {438755C2-A8BA-11D1-B96B-00A0C90312E1}

imagepath: Browseui preloader

Name: {8C7461EF-2B13-11d2-BE35-3078302C2030}

imagepath: Component Categories cache daemon

Name:

location: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\BTTray.lnk

imagepath: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

Name:

imagepath: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini

Name:

location: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\DVD Check.lnk

imagepath: C:\Program Files\InterVideo\DVD Check\DVDCheck.exe

Name:

imagepath: C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Startup\desktop.ini

 

Bootexecute items:

Name:

imagepath: autocheck autochk *

Name:

imagepath: lsdelete

 

Running services:

Name: AcrSch2Svc

displayname: Acronis Scheduler2 Service

Name: ALG

displayname: Application Layer Gateway Service

Name: ASKService

displayname: ASKService

Name: ASKUpgrade

displayname: ASKUpgrade

Name: Ati HotKey Poller

displayname: Ati HotKey Poller

Name: AudioSrv

displayname: Windows Audio

Name: btwdins

displayname: Bluetooth Service

Name: COMSysApp

displayname: COM+ System Application

Name: CryptSvc

displayname: Cryptographic Services

Name: DcomLaunch

displayname: DCOM Server Process Launcher

Name: Dhcp

displayname: DHCP Client

Name: dmserver

displayname: Logical Disk Manager

Name: Dnscache

displayname: DNS Client

Name: ehRecvr

displayname: Media Center Receiver Service

Name: ehSched

displayname: Media Center Scheduler Service

Name: ERSvc

displayname: Error Reporting Service

Name: Eventlog

displayname: Event Log

Name: EventSystem

displayname: COM+ Event System

Name: FastUserSwitchingCompatibility

displayname: Fast User Switching Compatibility

Name: helpsvc

displayname: Help and Support

Name: hpqwmi

displayname: HP WMI Interface

Name: lanmanserver

displayname: Server

Name: lanmanworkstation

displayname: Workstation

Name: Lavasoft Ad-Aware Service

displayname: Lavasoft Ad-Aware Service

Name: LmHosts

displayname: TCP/IP NetBIOS Helper

Name: Netman

displayname: Network Connections

Name: Nla

displayname: Network Location Awareness (NLA)

Name: PlugPlay

displayname: Plug and Play

Name: Pml Driver HPZ12

displayname: Pml Driver HPZ12

Name: PolicyAgent

displayname: IPSEC Services

Name: ProtectedStorage

displayname: Protected Storage

Name: RasMan

displayname: Remote Access Connection Manager

Name: RemoteRegistry

displayname: Remote Registry

Name: RpcSs

displayname: Remote Procedure Call (RPC)

Name: SamSs

displayname: Security Accounts Manager

Name: Schedule

displayname: Task Scheduler

Name: seclogon

displayname: Secondary Logon

Name: SENS

displayname: System Event Notification

Name: SharedAccess

displayname: Windows Firewall/Internet Connection Sharing (ICS)

Name: ShellHWDetection

displayname: Shell Hardware Detection

Name: Spooler

displayname: Print Spooler

Name: SSDPSRV

displayname: SSDP Discovery Service

Name: stisvc

displayname: Windows Image Acquisition (WIA)

Name: TapiSrv

displayname: Telephony

Name: TermService

displayname: Terminal Services

Name: Themes

displayname: Themes

Name: TrkWks

displayname: Distributed Link Tracking Client

Name: TryAndDecideService

displayname: Acronis Try And Decide Service

Name: W32Time

displayname: Windows Time

Name: WebClient

displayname: WebClient

Name: winmgmt

displayname: Windows Management Instrumentation

Name: wscsvc

displayname: Security Center

Name: wuauserv

displayname: Automatic Updates

Name: WZCSVC

displayname: Wireless Zero Configuration

Name: Apple Mobile Device

displayname: Apple Mobile Device

Name: Bonjour Service

displayname: Bonjour Service

Name: iPod Service

displayname: iPod Service

Share this post


Link to post
Share on other sites

Hi baljeet,

 

Firstly, your opening statement:

been trying to reach support using the built in support link. Lavasoft technical support havent answered my 1 single quesiton. Whats going on?

When you log into the Support Center and submit the details of your problem, do you get an auto-response email that Support has received your request? This should arrive fairly promptly - if you have never received one, then you should be checking your email/spam filtering settings, as well as your junk mail folder. You may find that Support has been trying to respond to you, but can't get through - a common problem for them...

 

Secondly, your log clearly shows that the cookie in question has been cleaned:

Removed items:

Description: *ad.yieldmanager* Family Name: Cookies Clean status: Success Item ID: 409172 Family ID: 0

An obvious point to make is that you are likely to be revisiting the site which is loading that cookie each time that you go there. If it has only recently started appearing, then it may be that the site in question has only recently added it.

 

I see that your OS is XP SP3, so I would suggest that you go to "Tools > Internet Options > Privacy" and select the cookie-handling level that best suits you - I would suggest either "Medium High" or "High".

 

I would also suggest running at least a Smart Scan every day, if you really want to keep tabs on the "ad.yieldmanager" cookie - I alternate between Smart scans and (scheduled) Full scans from day to day, and often find the same cookie(s) reappearing.

 

Regards,

 

Spike

Share this post


Link to post
Share on other sites

I would also recommend blocking any cookies you don't need. If your browser doesn't allow them to be set, they won't be there for a scan to pick up.

Share this post


Link to post
Share on other sites
Hi baljeet,

 

Firstly, your opening statement:

 

When you log into the Support Center and submit the details of your problem, do you get an auto-response email that Support has received your request? This should arrive fairly promptly - if you have never received one, then you should be checking your email/spam filtering settings, as well as your junk mail folder. You may find that Support has been trying to respond to you, but can't get through - a common problem for them...

 

Secondly, your log clearly shows that the cookie in question has been cleaned:

 

An obvious point to make is that you are likely to be revisiting the site which is loading that cookie each time that you go there. If it has only recently started appearing, then it may be that the site in question has only recently added it.

 

I see that your OS is XP SP3, so I would suggest that you go to "Tools > Internet Options > Privacy" and select the cookie-handling level that best suits you - I would suggest either "Medium High" or "High".

 

I would also suggest running at least a Smart Scan every day, if you really want to keep tabs on the "ad.yieldmanager" cookie - I alternate between Smart scans and (scheduled) Full scans from day to day, and often find the same cookie(s) reappearing.

 

Regards,

 

Spike

 

 

 

Yes I fianlly figure out that blocking third party cookies help in IE 8

 

 

 

1. Everytime I will scan with AD-aware full scan option. It will fix the detected cookie but the cookie regenrate itself even without visiting to any webpage.

 

2. When I checked the option Block third party cookie but also prompt me for notification I get this message right after 2 minutes "website named yieldmanager.com trying to save cookied on your computer "Allow" "BLock"? So I knew something was trying to connect to web to download this cookied even without re-visiting the site.

 

3. Finally I was manage to block all third parties using IE8 built in option in privacy and Run full complete scan of ad-aware twice just to make sure system was clean and healthy.

 

 

Thanks lot for your help.

Share this post


Link to post
Share on other sites

Hi baljeet,

 

Good to read that you managed to resolve your problem - I'll go ahead and close this topic now.

 

If you need the topic reopened, baljeet, please contact me via PM.

 

Anyone else should start their own new Topic.

 

Regards,

 

Spike

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this