BTH5

Norton Security & Airbus Professional

Recommended Posts

Today on startup of P3Dv4, Norton Security flagged..... nearly everything in the A318/318 folder with File Insight, but left the A320-321 folder untouched.   I find it odd because I haven't made any changes to the install since A320/321 came out.   I always disable Auto Protect when I install, and other then during an install or right after an update, I do not have problems with Norton.  

 

Any thoughts?  Is something corrupted?, or is Norton being it overzealous self?  Do I need to set an exclude for the entire folder or just asupdater.exe?

 

Filename: asupdater.exe
Threat name: Heur.AdvML.BFull Path: d:\documents\aerosoft\asupdater\asupdater.exe

____________________________

____________________________


On computers as of 
9/14/2018 at 2:54:03 PM

Last Used 
9/14/2018 at 2:56:04 PM

Startup Item 
No

Launched 
No

Threat type: Heuristic Virus. Detection of a threat based on malware heuristics.


____________________________


asupdater.exe Threat name: Heur.AdvML.B
Locate


Few Users
Hundreds of users in the Norton Community have used this file.

Mature
This file was released 2 months ago.

High
This file risk is high.


____________________________


Source: External Media

Source File:
asupdaterupdater.exe

File Created:
asupdater.exe

____________________________

File Actions

File: d:\documents\aerosoft\asupdater\ asupdater.exe Removed
File: c:\users\brian hughes\appdata\local\microsoft\clr_v4.0_32\usagelogs\ asupdater.exe.log Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318 cfm professional\ aircraft.cfg Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318-a319 professional base\panel_fallback\ab_systems\ ab_anims_slow.xml Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318-a319 professional base\panel_fallback\ab_systems\ ab_ecam_ewd2.xml Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318-a319 professional base\panel_fallback\ab_systems\ ab_startup.xml Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318-a319 professional base\panel_fallback\ab_systems\ checklist.xml Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318-a319 professional base\panel_fallback\ab_systems\ checklist_reset.xml Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318-a319 professional base\panel_fallback\ab_systems\ copilot.xml Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a318-a319 professional base\panel_fallback\ab_systems\ sound.xml Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a319 cfm professional\ aircraft.cfg Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\simobjects\airplanes\aerosoft a319 iae professional\ aircraft.cfg Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\documentation\ vol9-connected flight deck flows.pdf Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\ product.cfg Threat Removed
File: f:\prepar3d v4\aerosoft a318-a319 professional\ readme.txt Threat Removed
File: d:\documents\aerosoft\general\ fs2crew raas aa readme.txt Threat Removed
File: d:\documents\aerosoft\asupdater\products\ as_a318_a319_prof.xml Threat Removed
File: c:\users\brian hughes\documents\aerosoft\asupdater\logs\ aerosoft a318-a319 professional_1.0.1.3_log.txt Threat Removed
File: d:\documents\aerosoft\asupdater\ asupdater.cfg Threat Removed
Directory: c:\Users\brian hughes\documents\Aerosoft\ asupdater Restart Required
Directory: c:\users\brian hughes\documents\aerosoft\asupdater\ logs Threat Removed
____________________________

Registry Actions

Registry change: HKEY_LOCAL_MACHINE\Software\WOW6432Node\Microsoft\Tracing\ ASUpdater_RASAPI32, Registry Hive: 64 bit Threat Removed
Registry change: HKEY_LOCAL_MACHINE\Software\WOW6432Node\Microsoft\Tracing\ ASUpdater_RASMANCS, Registry Hive: 64 bit Threat Removed
____________________________


File Thumbprint - SHA:
a5ca42a299180b3aa8bafcb022e39f7435a1a5cdd1494670f42cad473c281741
File Thumbprint - MD5:
bdf37d2d6aecd6d919f3928919af0d6f
 

Share this post


Link to post
Share on other sites

Because we believe this topic has been answered we have closed it. If you have any more questions feel free to open a new topic.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.