Re: BugHunter sig update 03.28.07

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
False positive detected by Bughunter.

Complete scanning result of "aswBoot.exe", received in VirusTotal at
03.29.2007, 02:05:14 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.3.27.0 03.28.2007  no virus found
AntiVir 7.3.1.44 03.28.2007  no virus found
Authentium 4.93.8 03.29.2007  no virus found
Avast 4.7.936.0 03.28.2007  no virus found
AVG 7.5.0.447 03.28.2007  no virus found
BitDefender 7.2 03.29.2007  no virus found
CAT-QuickHeal 9.00 03.28.2007  no virus found
ClamAV devel-20070312 03.29.2007  no virus found
DrWeb 4.33 03.28.2007  no virus found
eSafe 7.0.14.0 03.28.2007  no virus found
eTrust-Vet 30.6.3518 03.28.2007  no virus found
Ewido 4.0 03.28.2007  no virus found
FileAdvisor 1 03.29.2007  Not analyzed yet
Fortinet 2.85.0.0 03.28.2007  no virus found
F-Prot 4.3.1.45 03.28.2007  no virus found
F-Secure 6.70.13030.0 03.29.2007  no virus found
Ikarus T3.1.1.3 03.28.2007  no virus found
Kaspersky 4.0.2.24 03.29.2007  no virus found
McAfee 4994 03.28.2007  no virus found
Microsoft 1.2306 03.28.2007  no virus found
NOD32v2 2152 03.28.2007  no virus found
Norman 5.80.02 03.28.2007  no virus found
Panda 9.0.0.4 03.28.2007  no virus found
Prevx1 V2 03.29.2007  no virus found
Sophos 4.15.0 03.27.2007  no virus found
Sunbelt 2.2.907.0 03.24.2007  no virus found
Symantec 10 03.29.2007  no virus found
TheHacker 6.1.6.080 03.23.2007  no virus found
UNA 1.83 03.16.2007  no virus found
VBA32 3.11.2 03.29.2007  no virus found
VirusBuster 4.3.7:9 03.28.2007  no virus found
Webwasher-Gateway 6.0.1 03.28.2007 no virus found


Complete scanning result of "ICSharpCode.SharpZipLib.dll", received in
VirusTotal at 03.29.2007, 02:13:59 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.3.27.0 03.28.2007  no virus found
AntiVir 7.3.1.44 03.28.2007  no virus found
Authentium 4.93.8 03.29.2007  no virus found
Avast 4.7.936.0 03.28.2007  no virus found
AVG 7.5.0.447 03.28.2007  no virus found
BitDefender 7.2 03.29.2007  no virus found
CAT-QuickHeal 9.00 03.28.2007  no virus found
ClamAV devel-20070312 03.29.2007  no virus found
DrWeb 4.33 03.28.2007  no virus found
eSafe 7.0.14.0 03.28.2007  no virus found
eTrust-Vet 30.6.3518 03.28.2007  no virus found
Ewido 4.0 03.28.2007  no virus found
FileAdvisor 1 03.29.2007  No threat detected
Fortinet 2.85.0.0 03.28.2007  no virus found
F-Prot 4.3.1.45 03.28.2007  no virus found
F-Secure 6.70.13030.0 03.29.2007  no virus found
Ikarus T3.1.1.3 03.28.2007  no virus found
Kaspersky 4.0.2.24 03.29.2007  no virus found
McAfee 4994 03.28.2007  no virus found
Microsoft 1.2306 03.28.2007  no virus found
NOD32v2 2152 03.28.2007  no virus found
Norman 5.80.02 03.28.2007  no virus found
Panda 9.0.0.4 03.28.2007  no virus found
Prevx1 V2 03.29.2007  no virus found
Sophos 4.15.0 03.27.2007  no virus found
Sunbelt 2.2.907.0 03.24.2007  no virus found
Symantec 10 03.29.2007  no virus found
TheHacker 6.1.6.080 03.23.2007  no virus found
UNA 1.83 03.16.2007  no virus found
VBA32 3.11.2 03.29.2007  no virus found
VirusBuster 4.3.7:9 03.28.2007  no virus found
Webwasher-Gateway 6.0.1 03.28.2007 no virus found


Aditional Information
File size: 122880 bytes
MD5: 555a3998407435703f9c14350a929846
SHA1: 34893912cb60a1dbdb3b50d1205902769acbfcca
Bit9 info:
http://fileadvisor.bit9.com/services/extinfo.aspx?md5=555a3998407435703f9c14350a929846



--

Newsgroup Trolls. Read about mine here http://www.pcbutts1.com/downloads
The list grows. Leythos the stalker http://www.leythosthestalker.com , David
H. Lipman, Max M Wachtell III  aka What's in a Name?, Fitz,
Rhonda Lea Kirk, Meat Plow, F Kwatu F, George Orwell



Quoted text here. Click to load it



Re: BugHunter sig update 03.28.07


Quoted text here. Click to load it

Mind posting the Bughunt.log file?

I'd like to clear up any false positives. The logfile contains the
information needed to do so. If your unwilling to post it, Then it'll be
corrected sometime in the future; ie, not a priority as only you seem to be
affected by it?
--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - V2.2
web: http://bughunter.it-mate.co.uk - email:
bughunter.dustin@gmail.com.removethis
Pad: http://bughunter.it-mate.co.uk/pad.xml


Re: BugHunter sig update 03.28.07

Go to Hell Dustin, oh BTW bughunter will no longer flag Remove-it. The new
update has been uploaded.

--

Newsgroup Trolls. Read about mine here http://www.pcbutts1.com/downloads
The list grows. Leythos the stalker http://www.leythosthestalker.com , David
H. Lipman, Max M Wachtell III  aka What's in a Name?, Fitz,
Rhonda Lea Kirk, Meat Plow, F Kwatu F, George Orwell



Quoted text here. Click to load it



Re: BugHunter sig update 03.28.07

On Wed, 28 Mar 2007 19:04:25 -0700, pcbutts1 wrote:
Quoted text here. Click to load it

LOL, no one really thought that you would actually be a good member of the
community - the real good ones share issues and resolutions, you just
appear to steal software and appear to have no technical skills.

I would guess that you ran an old version that you hacked so that it would
show false readings.

--
Want to know what PCBUTTS1 is really about?
*** WARNING - this links contains foul/pornographic content of an
abusive nature created by PCBUTTS1 and still hosted on his public
website ***
http://www.pcbutts1.com/downloads/leythos.htm

Re: BugHunter sig update 03.28.07


Quoted text here. Click to load it

BugHunter has provided him the information which would save a great deal of
time to remove them, if they are false alarms. For the time being, they
aren't considered important, so they will remain for now.
 
Quoted text here. Click to load it

Heh, I doubt pcbutts hacked anything. BugHunter heavily uses checksum
algorithms to protect it's integrity. If he modifies any file required for
the proper operation, it will not run.


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - V2.2
web: http://bughunter.it-mate.co.uk - email:
bughunter.dustin@gmail.com.removethis
Pad: http://bughunter.it-mate.co.uk/pad.xml


Re: BugHunter sig update 03.28.07


Quoted text here. Click to load it

So you don't want to provide the pointer information that BugHunter lists
in the logfile? It nullifies your right to complain in that event...

PcButts, I can always add generic scanning; your a simple text file. :)

For the time being, I'll just develop new signatures for your malicious
software.

And your right, people infected by your crap cannot download bughunter from
it's site, but they can from cnet.download.com and various others. :)


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - V2.2
web: http://bughunter.it-mate.co.uk - email:
bughunter.dustin@gmail.com.removethis
Pad: http://bughunter.it-mate.co.uk/pad.xml


Re: BugHunter sig update 03.28.07


Quoted text here. Click to load it
Confirmed to be a false alarm, record id found thanks to a previous post
of yours when you were more helpful:

C:\PROGRA~1\NPSOFT~1\WTR-WE~1\ICSHAR~1.DLL - Full Match! 1:1264 -
Scanning
Only
C:\WINDOWS\INSTAL~1\{B510A~1\NEWSHO~1.EXE - Malicious JavaScript 2:443 -
Scannin

Complete scanning result of "ICSharpCode.SharpZipLib.dll", received in

I'll have it removed with the next signature release. Since you won't
provide the record and index information for the aswboot.exe, I'm forced
to dig thru the malware collection for a match, many thanks...

--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - V2.2
web: http://bughunter.it-mate.co.uk - email:
bughunter.dustin@gmail.com.removethis
Pad: http://bughunter.it-mate.co.uk/pad.xml


Site Timeline