Sign in to follow this  
linux

Adware.Win32.ADON!A2

Recommended Posts

A2 found this setup file in my Unlocker folder.

This is Unlocker: Link Removed {edited by moderator - H_D}

A2 log from today:

a-squared Free - Version 4.5

Last update: 2009-10-16 08:52:23

Scan settings:

Scan type: deep

Objects: Memory, Traces, Cookies, C:\, F:\

Scan archives: On

Heuristics: Off

ADS Scan: On

Scan start: 2009-10-16 08:53:34

c:\windows\installer\msic.tmp detected: Trace.File.FileSubmit.A!A2

C:\Documents and Settings\...\Cookies\[email protected][2].txt detected: Trace.TrackingCookie.atdmt!A2

C:\Program\Unlocker\eBay_shortcuts_1016.exe detected: Adware.Win32.ADON!A2

Scanned

Files: 260135

Traces: 639234

Cookies: 42

Processes: 36

Found

Files: 1

Traces: 1

Cookies: 1

Processes: 0

Registry keys: 0

Scan end: 2009-10-16 10:46:42

Scan time: 1:53:08

I removed my real name from the log.

C:\Program\Unlocker\eBay_shortcuts_1016.exe detected: Adware.Win32.ADON!A2:

VirusTotal says Result: 4/41 (9.76%) and

Jotti says: 1 out of 21 scanners reported malware.

About this file: Is it safe to remove this one? Looks like a normal setup exe file.

File submitted from A2 UI.

I see there is some information about Unlocker 1.8.7 and this ebay thing when i Google, but i dont really know what to do right now so thats why i ask here.

c:\windows\installer\msic.tmp detected: Trace.File.FileSubmit.A!A2:

This file have been sent by me to emsisoft for check before. Nothing happened yet.

But VirusTotal and Jotti says its okey.

About this file: http://forum.emsisoft.com/Default.aspx?g=posts&m=36094

/ linux

Share this post


Link to post
Share on other sites

Hi linux,

Welcome to the new forum

Please submit eBay_shortcuts_1016.exe or put it into White List

The file is indeed resides in Unlocker folder here as well

As for c:\windows\installer\msic.tmp detected: Trace.File.FileSubmit.A!A2

Definitely put it into your White List as it was suggested by Christian Peters here http://forum.emsisoft.com/Default.aspx?g=posts&t=6342

My regards

P.S.

Please read Posting Rules - #2) regarding providing System Environment information

Share this post


Link to post
Share on other sites

Hi, linux, welcome to the new forum

I removed the link as it was doing some strange things.

Please do not post links to software in the future - if a file really is infected, you run the risk of spreading that infection to other users if they should try to 'test' the file themselves.

[Edit]

Lynx and I were, as usual, typing at the same time...

Share this post


Link to post
Share on other sites

Thanks for the answears, ill whitelist them.

Sorry for posting the link and thanks for removing it. I thought it was safe, i should think one more time next time. Sorry for this.

/ linux

Share this post


Link to post
Share on other sites

Hi Guys,

Thanks H_D, I forgot to do that :)

Anyway even if the link is "Ok" it is not recommended to post any link especially if there are files in question and flaggings

I will color that note about the link in red so other users can see in the future

Cheers!

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.