Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

General discussion

Malware or Not?

by colinito Feb 16, 2011 10:39PM PST

Hello Everyone,
I use W.7 with AVG Free 2011
Upon Cnet notification that there was a download for "A Tube Catcher," I downloaded it.
I immediately got this notification from my A/V programme -

FILE NAME :- Users/User/Desktop/A Tube_Catcher.EXE
Threat Name:- The file pointer cannot be set on the specified
device file.
Severity Level :- (Four Red Squares)
Category :- Unknown
Description :-
This is a potentially unwanted application. These are programs that computer users wish to be aware of. These programs include applications that have an impact on security, privacy, resource consumption, or are associated with security risks. These programs can show a pattern of installation without user permission or notice on a system or be deemed to be separate and different from the application installed.

There was then an invitation to either Move To Vault or Allow.
I chose to Move To Vault.
I subsequently received a notice that 1 file had been removed.

My queston is this. Is this really maleware or is the notification a 'routine' one for these files?

Thanks

Colinito

Discussion is locked

4 Posts

- Collapse + Expand Details

- Collapse -

Re: Atube catcher

by Kees_B Forum moderator Feb 16, 2011 10:47PM PST

http://www.youtube.com/watch?v=BxkZPFCUtoc shows some people saying it's malware, and a lot of others saying it isn't.

Upload the file to www.virustotal.com and ask the opinion of 20 or 30 antivirus-programs at the same time. Please tell us the outcome of that test.

Kees

- Collapse -

malware or not ?

by colinito Feb 19, 2011 1:13AM PST

Hello again, Kees,
Here is the report as requested. It seems that I should be clear to re-locate the download back to the desktop and install it.

Complete scanning result of "ATUBE_CATCHER.EXE", processed in VirusTotal at 02/18/2011 23:17:10 (CET).

[ file data ]
* name..: ATUBE_CATCHER.EXE
* size..: 12399752
* md5...: 71f92ad5a715f1cbde449c855393213f
* sha1..: 884a8dbf93e6702a4895aa22e9bc81c3735386a1
* peid..: -

[ scan result ]
AhnLab-V3 2011.02.14.02/20110214 found nothing
AntiVir 7.11.3.144/20110218 found nothing
Antiy-AVL 2.0.3.7/20110218 found nothing
Avast 4.8.1351.0/20110218 found nothing
Avast5 5.0.677.0/20110218 found nothing
AVG 10.0.0.1190/20110218 found nothing
BitDefender 7.2/20110218 found nothing
CAT-QuickHeal 11.00/20110218 found nothing
ClamAV 0.96.4.0/20110218 found nothing
Commtouch 5.2.11.5/20110218 found nothing
Comodo 7735/20110218 found nothing
DrWeb 5.0.2.03300/20110218 found nothing
Emsisoft 5.1.0.2/20110218 found nothing
eSafe 7.0.17.0/20110217 found nothing
eTrust-Vet 36.1.8170/20110218 found nothing
F-Prot 4.6.2.117/20110218 found nothing
F-Secure 9.0.16160.0/20110218 found nothing
Fortinet 4.2.254.0/20110218 found nothing
GData 21/20110218 found nothing
Ikarus T3.1.1.97.0/20110218 found nothing
Jiangmin 13.0.900/20110218 found nothing
K7AntiVirus 9.87.3898/20110218 found nothing
Kaspersky 7.0.0.125/20110218 found nothing
McAfee 5.400.0.1158/20110218 found [ASKToolbar]
McAfee-GW-Edition 2010.1C/20110218 found nothing
Microsoft 1.6502/20110218 found [Adware:Win32/OpenCandy]
NOD32 5887/20110218 found nothing
Norman 6.07.03/20110218 found nothing
nProtect 2011-02-10.01/20110215 found nothing
Panda 10.0.3.5/20110218 found nothing
PCTools 7.0.3.5/20110218 found nothing
Prevx 3.0/20110218 found nothing
Rising 23.45.04.06/20110218 found nothing
Sophos 4.61.0/20110218 found nothing
SUPERAntiSpyware 4.40.0.1006/20110218 found nothing
Symantec 20101.3.0.103/20110218 found nothing
TheHacker 6.7.0.1.132/20110217 found nothing
TrendMicro 9.200.0.1012/20110218 found nothing
TrendMicro-HouseCall 9.200.0.1012/20110215 found nothing
VBA32 3.12.14.3/20110218 found nothing
VIPRE 8466/20110218 found nothing
ViRobot 2011.2.18.4317/20110218 found nothing
VirusBuster 13.6.208.0/20110218 found nothing

[ notes ]
NSIS, Unicode
Swf2Swc

Considering that nothing has ben found, makes me wonder why AVG gave it four red squares etc...

Regards,

Colinito

- Collapse -

Most likely...

by John.Wilkinson Feb 19, 2011 2:38AM PST

Most likely, one of two possibilities:

1.) A false positive in the AVG definitions you have installed. This is common and often corrected once reported to the developer by a user.

2.) VirusTotal performs a standard virus scan without optional settings, often including heuristics and behavior analysis. Thus, even with the exact same version, it may not produce exactly the same alerts as your copy.

From the alert displayed, it sounds like A Tube Catcher may include the Ask toolbar (typically an optional install), which is considered adware by some. It is more of an annoyance than a security risk, and can be easily removed, so it is not a deal-breaker even if it is not a false positive.

Hope this helps,
John

- Collapse -

Malware or Not ? - Most likely

by colinito Feb 19, 2011 5:16AM PST

Hello John,
Thanks for your answer.
I will try to contact AVG - but I don't hold out any hope, I have tried in the past, and the only way is to register. I registered and am informed that I am not able to use my email address/user name/pass word etc - I do not worry. I've given up!
Regarding the ASK toolbar - I can not remove it. I have done all the deleting moves and it has gone from the Control Panel and it does not show anywhere. However, it is still on the choice of toolbars when I get the drop-down list. I just disable it as it wont be deleted! I have given up on that as well!

Thanks again.

colinito.

Back to Download.com Site Feedback forum

CNET Forums

Operating Systems

Software

Electronics & Gadgets

Hardware

Tablets & Mobile Devices

General Help

Brand Forums

Roadshow Autos

Off Topic

Other Forums

Chowhound

Comic Vine

GameFAQs

GameSpot

Giant Bomb

TechRepublic

Forum Info