Author Topic: Win32:Burper Joke ( VirusTotal engine VS my avast! )  (Read 6920 times)

0 Members and 1 Guest are viewing this topic.

Sakthi.monsteR

  • Guest
Win32:Burper Joke ( VirusTotal engine VS my avast! )
« on: December 31, 2011, 09:16:10 AM »
Check Below !



Virus total report --> http://www.virustotal.com/file-scan/report.html?id=76079a7565b3c8fcd72fd5b2175dd60fc4a6be865431aeb67b6edfe3e25f50fd-1325306482
---------------------------------------------------------------------------
Avast   6.0.1289.0   2011.12.30   Win32:Burper [Joke]
----------------------------------------------------------------------------
I am updated !!



WTF ???

Am I wrong at something ???

Offline RejZoR

  • Polymorphic Sheep
  • Serious Graphoman
  • *****
  • Posts: 9406
  • We are supersheep, resistance is futile!
    • RejZoR's Flock of Sheep
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #1 on: December 31, 2011, 09:19:40 AM »
You have to enable PUP detection for it to be detected.
Visit my webpage Angry Sheep Blog

Sakthi.monsteR

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #2 on: December 31, 2011, 09:24:11 AM »
You have to enable PUP detection for it to be detected.

In custom scan settings or what ?? can u guide ??
Cause i left it on default settings only while installing ..
Now i even have the enable PUP "on" under custom scan options ... ???

Offline CraigB

  • Avast Überevangelist
  • Serious Graphoman
  • *****
  • Posts: 11239
  • No support PM's thanks
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #3 on: December 31, 2011, 09:33:54 AM »
I have PUP enabled in all shields and all scans.

Sakthi.monsteR

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #4 on: December 31, 2011, 09:47:04 AM »
I have PUP enabled in all shields and all scans.

Didn't work !!
After enabling PUP "on" in all shields avast! blocks it while Downloading through web shield ..
But fails to clear the Downloaded File .. says it has no threat ..
« Last Edit: December 31, 2011, 09:53:47 AM by Sakthi.monsteR »

Sakthi.monsteR

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #5 on: December 31, 2011, 09:50:09 AM »
This is the file : xoomer.virgilio.it/g_leone4/burp.exe   

naren17

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #6 on: December 31, 2011, 10:32:19 AM »
Here when pup is enabled then its detected.

Mostly I have seen if the detection is a pup then its mentioned with the detection like win32Trojan(PUP)but this detection doesn't shows PUP with the detection name as usually Avast shows.

Thanx
Naren

ady4um

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #7 on: December 31, 2011, 10:35:40 AM »
Besides the File System Shield PUP, have you tried setting higher sensitivity and enabling PUP also in the "scan from windows explorer" manual scan?

Please report back.

naren17

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #8 on: December 31, 2011, 10:51:17 AM »
Here select folder to scan configured to detect PUP & sensitivity set to high detects it.

Which scan should I congigure for context menu scan?

Sakthi.monsteR

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #9 on: December 31, 2011, 11:29:40 AM »
My "select folder to scan settings "



Didn't help !! Scan ended with no findings ...

But While opening it blocked it -- Which it did not do b4 with heur "factory settings"
But how can VT find that ?? Does VT try to open the file ?

Offline CraigB

  • Avast Überevangelist
  • Serious Graphoman
  • *****
  • Posts: 11239
  • No support PM's thanks
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #10 on: December 31, 2011, 07:09:47 PM »
Here select folder to scan configured to detect PUP & sensitivity set to high detects it.

Which scan should I congigure for context menu scan?
That would be the scan from windows explorer  ::)

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37509
  • Not a avast user
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #11 on: December 31, 2011, 07:35:05 PM »
Quote
But how can VT find that ?? Does VT try to open the file ?

quote VirusTotal
Quote
*VirusTotal AV engines are commandline versions, so depending on the product, they will not behave exactly the same as the desktop versions: for instance, desktop solutions may use techniques based on behavioral analysis and count with personal firewalls that may decrease entry points and mitigate propagation, etc.
*In VirusTotal desktop-oriented solutions coexist with perimeter-oriented solutions; heuristics in this latter group may be more aggressive and paranoid, since the impact of false positives is less visible in the perimeter. It is simply not fair to compare both groups.

Sakthi.monsteR

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #12 on: January 01, 2012, 06:35:25 PM »
I understand how this avast! works ...   :(
Thanks for the response ...


naren17

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #13 on: January 02, 2012, 12:26:27 PM »
Here select folder to scan configured to detect PUP & sensitivity set to high detects it.

Which scan should I congigure for context menu scan?
That would be the scan from windows explorer  ::)

I am running the latest version on XP SP3. Under Scan category I dont have the scan you have shown in the screenshot i.e Scan with Windows Explorer?? I have 4 scans i.e Quick, Full, Removable Media & Select folder scan.

Thanx
Naren

true indian

  • Guest
Re: Win32:Burper Joke ( VirusTotal engine VS my avast! )
« Reply #14 on: January 02, 2012, 12:33:07 PM »
below the scan type say below quick scan there is more details button... . its in the bottom to the right... click on it and it will show scan for pup...from there u can switch it to on or off....i have it on in all my scans and in all my real time shields...