AOLLib.dll

Discussion in 'Malware Help (A Specialist Will Reply)' started by Vast41, Aug 8, 2006.

  1. Vast41

    Vast41 Private First Class

    I have this file in one of my applications, (AOLLib.dll) i am told it is a key logger, it's essential for my program to run, i sent it in to a few sites for analysis all came back negative. Spysweeper is the only scan to detect something negative about it, detects it as redvpopup. Is this file safe to have on my machine? I attached the file just i case someone wants to have a look. Thanks.
     
    Vast41, Aug 8, 2006
    #1
  2. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    What is the program that needs this .dll file to run?

    Options are the software you have installed is actually a rouge application using advertising gathering data capture utilising RedV software, p2p file sharing apps use these addons.

    Or its a legitimate app in which SpySweeper is picking up as a false positive ( happens on occasion, especally if you have that this app installed of ta while and its only now SpySweeper is picking it up )
     
    DavidGP, Aug 8, 2006
    #2
  3. Vast41

    Vast41 Private First Class

    Its a AOL Chatroom cloner program not a program you purchase, are you saying it may not be needed in order for the program to work?
     
    Vast41, Aug 8, 2006
    #3
  4. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    No not what I'm saying at all, just need the full name of the application to see if anything has been flagged up about it being suspicious. But it could just be a coincidence that this software uses a file which is similar in name to RedV, if you delete that file I suspect the software AOL chat app wont work.

    Some info in RedV
    http://research.sunbelt-software.com/threatdisplay.aspx?name=RedV Protector Suite&threatid=10397


    Have you updated SpySweeper of late?

    Did you install this AOL clone app reciently and only now SpySweeper is picking this up?
     
    DavidGP, Aug 8, 2006
    #4
  5. Vast41

    Vast41 Private First Class

    I have updated and ran spysweeper, it has always picked it up, but no other scan does...this file is RedV...i rather not ID the application on this forum, but i REALLY appreciate your posts and help, thanks for the link.
     
    Vast41, Aug 8, 2006
    #5
  6. Vast41

    Vast41 Private First Class

    Halo, can you translate this for me "RedV EasyInstall is bundled with file sharing programs such as Grokster. "In order to provide this service, RedV Network collects information on your web usage that remains anonymous to third parties. RedV Network may derive personal preference profiles from your Personal Information and web usage."
     
    Vast41, Aug 8, 2006
    #6
  7. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    Bascially means that IF you have a varient of RedV on your PC, it will report back to base your surfing habbits as to which websites you visit and how frequestly.

    Do you have any of those file traces on your PC or maybe have one of those names in Addd/Remove?

    Do read up on the AOL clone softwares website any privacy or licence notices as they can give clues as to if that software also bundles any other software as well, ie. Advertising software.

    as I said may well be a coincedence and a false positive that software has a file named the same as a RedV component, but without the name we couldnt check for you and I dont want to push you to name the software as thats your business.
     
    DavidGP, Aug 8, 2006
    #7
  8. Vast41

    Vast41 Private First Class

    As far as i know i have no file traces of RedV only computer only AOLLib.dll, there are no AOL clone softwares website's as far as i know, if there were i would know of them lol. I hope it is a false positive, but you never know. As far as the name of the application, if there is another way i could enlighten you to it other then this forum let me know. Thanks, and Chaslang if you have an opinion on this i would love to hear it or anyone else for that matter.
     
    Vast41, Aug 9, 2006
    #8
  9. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    If that is the only trace then, my best guess is that because the file name is like a component of RedV then Spysweeper is reporting a false positive.

    Unless Chas, SPD, BJ or Matt have other thoughts.
     
    Last edited: Aug 10, 2006
    DavidGP, Aug 10, 2006
    #9
  10. matt.chugg

    matt.chugg MajorGeek

    I'd have to say that since you won't ID the application we can only assume it is some kind of booter/lagger/cloner pogram for chat, many 3rd part programs like this will contain malware specifically keyloggers to steal the username and password of the chat program in question, in this case AOL.

    Judging by the name i'd say it is a library that allows programs to use the AOL chat protocol to enter chat. I have spent a lot of time in chat in the past and have seen many of these types of library for other chat protocols that are basically password stealers.

    Until you provide more information on the application I can only assume it is being used for a purpose that is either ilegal or at the least immoral.
     
    matt.chugg, Aug 10, 2006
    #10
  11. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    chaslang, Aug 10, 2006
    #11

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds