02/25/2015

SONAR.PUA!AlnadInsta

Type:  Trojan
Discovered:  25.02.2015
Updated:  25.02.2015
Affected systems:  Windows 2000, Windows 7, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Server 2008, Windows Vista, Windows XP
AV Vendor:  Symantec

Description:

SONAR.PUA!AlnadInsta is a heuristic detection used to detect threats associated with the Trojan.Alnaddy family.


SUBMITTING A SAMPLE TO Naked Security
Please submit files that are detected as SONAR.PUA!AlnadInsta to Naked Security so that these new risks or variants can be identified and assigned specific names. To learn how to submit a file, read the document for the type of Symantec antivirus product that you are using:

• Norton users
  To learn how to submit a file to Naked Security using Norton products, please read the following document:
  Manually submitting an item to Symantec
  

• Business users
  To learn how to submit a file to Naked Security using Symantec Endpoint Protection, please read the following document:
  The Naked Security sample submission process
  

REMOVING A FILE FROM QUARANTINE
It is possible to restore a file from quarantine to its previous location on your computer. This should only be done if you are certain that the file is not malicious. Symantec strongly recommends that you submit the file that was detected as SONAR.PUA!AlnadInsta even if you choose to restore the file from quarantine.

• Norton users
  To learn how to restore a file from quarantine using Norton products, please read the following document:
  Restoring an item from the Quarantine
  

• Business users
  To learn how to restore a file from quarantine using Symantec Endpoint Protection products, please read the following document:
  Restoring a false positive file detection from the Symantec Endpoint Protection quarantine