mike123

Member
  • Content Count

    51
  • Joined

  • Last visited

Community Reputation

0 Neutral

About mike123

  • Rank
    Active Member
  1. Does it also support registry key entries?
  2. OMG it worked! How does it work by the way? I'm curious why there needs to be a (A) and (B) for each one.
  3. Oh ok maybe we could talk to the developers on this one?
  4. This is the command I'm running: a2cmd.exe /m /t /c /f=C: /l=C:\Monitoring\virusscan_run.txt /wl=C:\Monitoring\Emsisoft\whitelist.txt Here is what the whitelist file contains: FILE: C:\Monitoring\Emsisoft\whitelist.txt C:\Documents and Settings\All Users\Application Data\bigfix HKEY_USERS\SC\FW_Release\SOFTWARE\BIGFIX HKEY_LOCAL_MACHINE\SOFTWARE\BIGFIX
  5. Looks like it doesn't work. Here is what my whitelist.txt file has: C:\Documents and Settings\All Users\Application Data\bigfix HKEY_USERS\SC\FW_Release\SOFTWARE\BIGFIX HKEY_LOCAL_MACHINE\SOFTWARE\BIGFIX This is what I get back after the scan: C:\Documents and Settings\All Users\Application Data\bigfix detected: Application.AppInstall (A) Key: HKEY_USERS\SC\FW_Release\SOFTWARE\BIGFIX detected: Application.InstallAd (A) Key: HKEY_LOCAL_MACHINE\SOFTWARE\BIGFIX detected: Application.InstallAd (A)
  6. Wow now thats COOL! If the path has spaces like C:\Documents and Settings\All Users\Application Data\bigfix, will I need to wrap it with quotes around it or anything?
  7. Whoa awesome I can do files? Can I also do registry entries since it's also detecting those.
  8. I'm using a2cmd, so the /wl argument for me points to a text file called whitelist.txt and has the lines I mentioned above. I don't seem to see a a2whitelist.ini file in my folder.
  9. Yes and it's a false positive, but that's a separate issue. Basically, I'm asking which formatting does the whitelist file need?
  10. C:\Documents and Settings\All Users\Application Data\bigfix detected: Application.AppInstall (A) Key: HKEY_USERS\SD\User\SOFTWARE\BIGFIX detected: Application.InstallAd (A) Key: HKEY_LOCAL_MACHINE\SOFTWARE\BIGFIX detected: Application.InstallAd (A)
  11. Hi Team, Can you tell me what is wrong with this whitelist file? Trojan.Generic.KDV.764073 Backdoor.Generic.750553 Backdoor.Generic.758207 Application.AppInstall Application.InstallAd Application.AdReg Is it necessary for it to include the parenthesis name? I tried it with the parenthesis name below, but it wasn't working. Trojan.Generic.KDV.764073 (B) Backdoor.Generic.750553 (B) Backdoor.Generic.758207 (B) Application.AppInstall (A) Application.InstallAd (A) Application.AdReg (A)
  12. Just FYI, these params don't show up in the help option when you use the anti-malware a2cmd version.
  13. Is there a way I can run the command line utility through the proxy? I am trying to use my company's proxy to access the internet.