Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » NIS 2008 - Another False Positive- Weather Pulse V2.05 B36
Search Topic:
Uniqs:
928		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
Cellphone tracking »
« Is this the 2007 new malware test done by Av-test lab?  
AuthorAll Replies

siliconman01
Premium
join:2005-05-08
Saint Albans, WV

1 edit		NIS 2008 - Another False Positive- Weather Pulse V2.05 B36

NIS 2008 has started detecting program Weather Pulse as Trojan.AdClicker as 21-Nov-07. I've been running Weather Pulse for over 2 years and it has never been detected by any security program as a security risk. Weather Pulse 2.05, Build 36 on Vista Business

»www.tropicdesigns.net

Note: It does NOT detect WP V2.10 Beta 4 as Trojan.AdClicker.
to forum · permalink · · 2007-11-21 04:19:40 · Reply to this


amysheehan
Premium,VIP,MVM
join:1999-12-21
Huntington Beach, CA
·RoadRunner Cable

3 edits
Click for full size
All's well so far
I downloaded the file and submitted to VirusTotal:



Only -- Rising 20.19.20.00 2007.11.21 Trojan.Spy.Win32.Delf.a flagged the install file.

I ran the setup program and so far no alerts.

EDIT TO ADD Ran full system scan and no problems.

Could you provide the log details??
DSLR Phishtracker
to forum · permalink · · 2007-11-21 04:49:03 · Reply to this

siliconman01
Premium
join:2005-05-08
Saint Albans, WV

 Risk category: Virus
Overall Risk Impact: High
Performance: High
Privacy: High
Removal: High
Stealth: High
Click for more information about this risk : Trojan.Adclicker
Action taken: Process Termination Required
Affected Areas:
Files & Directories
c:\program files\weather pulse\weatherpulse.exe
Registry Entries
HKEY_USERS\S-1-5-21-1191123195-845806041-362966033-500\Software\Microsoft\Windows\CurrentVersion\Run->Weather Pulse
Processes & Start-Up Items
c:\program files\weather pulse\weatherpulse.exe
Network & Browser Items
Browser Cache
to forum · permalink · · 2007-11-21 05:10:53 · Reply to this

siliconman01
Premium
join:2005-05-08
Saint Albans, WV

1 edit		reply to siliconman01
When I attempted to Restore the quarantined file, NIS hung for over 5 minutes and the program was not restored correctly. I attempted to re-install it, but NIS 2008 kicked it out during the installation at Trojan.Adclicker.

I installed V2.10 Beta4 with no problems.
to forum · permalink · · 2007-11-21 05:18:33 · Reply to this

roddy32

join:2005-12-10
Augusta, KS

 Same problem here also. As soon as NAV did today's weekly update I got an alert. I had to use the task manager to end BOTH weatherpulse and NAV because the alert would not go away. I uninstalled weatherpulse and had to reboot because the alert would still not let me do anything.

I just did a TrojanHunter scan which is done. It is clean but I had already uninstalled the offending program program. I am scanning with NAV now. I am sure this is a false positive, I have had this program on the computer for about 3 years. My version of NAV is older but the defs are the same.
to forum · permalink · · 2007-11-21 16:28:28 · Reply to this


sashwa
Pixie Cat Crunchin' n Foldin'
Premium,Mod
join:2001-01-29
Alcatraz
clubs:
·Comcast
·Alameda Power & Te..

Host:
Broadband Modem (H..
MSN
DSL Extreme
Windstream
Southeast Asian Br..
reply to siliconman01
They also have a thread about this at the Tropic Designs forums:

»tropicdesigns.net/modules.php?na···c&t=1069

It's not just NIS 2008 that this is happening with. I'm using NAV2006 and just got hit with it this evening. It completely disabled WeatherPulse. I was able to download and install the 2.10 Beta 4 with no problems and no hits.

I tried to submit the file to Symantec but I wasn't able to. The submit button was greyed out.
--
TH ~ NE ~ EPN ~ NC ~ TD
to forum · permalink · · 2007-11-21 23:49:33 · Reply to this

zog_2005

join:2004-10-25
Santa Monica, CA
1 edit		reply to siliconman01
I just sent this link to the guys on the Symantec Response team. They will start looking at it right away.
to forum · permalink · · 2007-11-22 00:03:19 · Reply to this

zog_2005

join:2004-10-25
Santa Monica, CA		reply to siliconman01
Just heard back.. fix will be out tomorrow.
to forum · permalink · · 2007-11-22 01:14:57 · Reply to this


amysheehan
Premium,VIP,MVM
join:1999-12-21
Huntington Beach, CA
·RoadRunner Cable

 reply to zog_2005
Thanks for the update !!!

said by zog_2005 See Profile :

I just sent this link to the guys on the Symantec Response team. They will start looking at it right away.
Thanks zog_2005 See Profile !!!

-amy-

--
DSLR Phishtracker
to forum · permalink · · 2007-11-22 10:19:31 · Reply to this

roddy32

join:2005-12-10
Augusta, KS
said by zog_2005 See Profile :

Just heard back.. fix will be out tomorrow.
Thanks zog_2005
to forum · permalink · · 2007-11-22 11:24:47 · Reply to this

BTWUR

join:2004-04-07
Blue Ridge, VA		reply to siliconman01
Re: NIS 2008 - Another False Positive- Weather Pulse V2.05 B36

Sorry I posted in the wrong thread Amy.
It's been a long time since I stopped by. =)

I reported this to Symantec too.
to forum · permalink · · 2007-11-22 11:24:55 · Reply to this

BTWUR

join:2004-04-07
Blue Ridge, VA		 This false positive issue with Weather Pulse V2.05 B36 has been resolved.
to forum · permalink · · 2007-11-23 20:05:31 · Reply to this
Forums » Up and Running » Security » SecurityCellphone tracking »
« Is this the 2007 new malware test done by Av-test lab?  

Thursday, 10-Dec 23:45:19 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [200] Sprint Sued For Distracted Driving Death
· [138] AT&T Launching New 24 Mbps U-Verse Tier
· [87] AT&T Hints At Usage-Based iPhone Data Pricing
· [82] 3G Network Test Says AT&T Is Tops
· [76] WPA Cracker: Test WPA-PSK Networks In 20 Minutes
· [72] Mediacom Unveils 105 Mbps Pricing
· [66] Sprint Poised For A Turnaround?
· [58] Average American Consumes 34 Gigabytes Daily
· [58] AT&T: iPhone Data Pricing Comments 'Taken Out Of Context'
· [51] The Future Of Wi-Fi Is Bright
Most people now reading
· New Mediacom Email [Mediacom]
· ICC strats [World of Warcraft]
· [WIN7] Well, I was dumb, but do I have recourse? [Microsoft Help]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· Windows 7 boot manager editing questions [Microsoft Help]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· malware has been found hidden inside an Ubuntu screensaver [Security]
· RG Firmware update to VDSL2 this morning [AT&T U-verse]
· [WIN7] Outlook express under Windows 7? [Microsoft Help]