Jump to content

Unlocker 1.92 False Positive?

Recommended Posts

Have downloaded this from filehippo and also the developers web site, http://www.emptyloop.com/unlocker/

and scanned install file with MBA-M both times it came up with PUP.Optional.Babylon.A

Is this a false positive or not?


Here is developer scan log and attached zip file


Malwarebytes Anti-Malware

Database version: v2013.08.15.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Judy :: JUDY-PC [administrator]

8/15/2013 10:06:13 AM
mbam-log-2013-08-15 (10-06-13).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 266736
Time elapsed: 5 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 5
C:\Users\Judy\Desktop\Unlocker1.9.2.exe (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully. [9c0392f299d368cefaa0c0882bd6e31d]
C:\Users\Judy\AppData\Local\Temp\5p4eEQpD.exe.part (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully. [c3dc0d77501cb4823c5e5aee49b81fe1]
C:\Users\Judy\AppData\Local\Temp\BUJ03Wnw.exe.part (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully. [9d02354f571550e68911cc7c8978867a]
C:\Users\Judy\AppData\Local\Temp\UqovSjVS.exe.part (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully. [316e90f435373afcd3c734147988d030]
C:\$Recycle.Bin\S-1-5-21-1759825052-3470346963-590040477-1001\$R2K11HD.exe (PUP.Optional.Babylon.A) -> Quarantined and deleted successfully. [3f602a5a9ad269cdbcde272141c0ed13]



Link to post
Share on other sites
  • 2 years later...

Uploaded this file on Virustotal 7/55 antimalware engines flagged it.


I cleaned it from several PC's ...One PC where I'd installed and used it to get rid of some locked files...MBA-M didn't find any problem..only the program/installer bundle was flagged pre-installation. I looked at all the places where the delta search toolbar installs and found no evidence of it.

Maybe MB anti-exploit blocked the install. Anyway, I went ahead and uninstalled unlocker because I just don't trust it.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.