Saturday, March 3, 2007

Live OneCare cleaned something but what and where?

Using Windows Live OneCare on Windows Vista it found a potentially unwanted software. Trojan JS/Redirector.A that it alerts with the severe level. The problem with OneCare here is that it is not much information about the problem. Where is this found and what is it?

Brave enough I selected Clean all to see what happened. Still clueless as you can see.

I contacted Microsoft Online Support Service and was pointed to Windows Live OneCare Support Log. I had looked for a way to view the log but it seems that it has to be created first.

To create a Windows Live OneCare support log:

  1. Under Common Tasks (Quick Links), click Change OneCare settings (Change settings).
  2. On the Logging tab, click Create support log.

Looking at the log file now at least after it is done I know what happened.

Windows Live OneCare found potentially harmful or unwanted software on your computer

Threat Name: Trojan:JS/Redirector.A

Detection Date and Time: 3/2/2007 8:54 PM

File Name: C:\Users\Jimmy\AppData\Local\Microsoft\Windows Live Mail desktop\jtbworld@hotmail.com\Hotmail (jt db2\Junk e-mail\41980368-0000001A.eml

Threat Severity: Severe

Threat Category: Trojan

Contained Object: (SCRIPT0000)

Virus and spyware monitoring found potentially unwanted software: (ANTIVIRUS_ONACCESS)

Threat Status: Removed

So the wish for the next OneCare version is to be able to see what file is affected.


1 comment:

  1. Restored comment
    jc said...

    same thing happened to me on both my computers yesterday, and then again this morning. The info database from MS is no help.

    March 05, 2007
    Anonymous said...

    My computers are getting the same warning... except that OneCare cannot clean mine. I wish we knew where the files were so we could delete them but there is no info about this on my scan report. It only says there is the Trojan JS/redirector.a and that OneCare was not able to quarantine or clean it.
    March 12, 2007

    Anonymous said...

    9 times out of 10 it is in your temporary internet files. empty that, and it willl be gone....
    March 26, 2007

    bkp said...

    As jc said initially, you can find the offending file, if you create a log. My problem is that it exists in one of my *.pst files (can't delete the entire file). I've contacted Microsoft Support with the issue to see how it can be dealt with.
    April 16, 2007

    ReplyDelete

Some of the latest blog posts

Subscribe to RSS headline updates from:
Powered by FeedBurner