smitfraud on vista!!!!

[---Fitz---]

"pcbutts1" <pcbutts1@leythosthestalker.com> wrote in message
news:f6msks$2oc$1@blackhelicopter.databasix.com...
> You're slipping and Leythos too. I released a beta version over 2 months
> ago in my forums not here. You both missed it.


Yeah...right.

[Dustin Cook]

"Gaz" <gazter@msn.com> wrote in news:5f1oq6F39nhpuU1@mid.individual.net:

> Probably not entirely unexpected, but witnessed a PC today, with vista
> premium, that was infected with a smitfraud variant.....
>
> Smitfraudfix, my favourite quickfix for such variants wouldnt work on
> vista... Whatever the variant was, it completely locked up explorer
> resulting in a looping crash of explorer windows, in both safe mode and
> normal. Only way around was to launch system restore and take it back,
> thankfully that worked...
>
> Gaz
>
>
>

Interesting. Never thought of using a bart disc and checking it with
BugHunter? You might have been pleasantly surprised.


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[Dustin Cook]

"pcbutts1" <pcbutts1@leythosthestalker.com> wrote in news:f6k8kh$j1a$1
@blackhelicopter.databasix.com:

> Yeh he's waiting for mine so he can steal it.
>
>

Correction. Your waiting for him to release a batch file for you to take,
rename and claim as your own. You are not a programmer, You can't code, and
you sure as hell can't script.

The only reason you haven't tried passing BugHunter off as your own is
because it's not a batch file your sorry ass could edit.


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[Dustin Cook]

"pcbutts1" <pcbutts1@leythosthestalker.com> wrote in
news:f6msks$2oc$1@blackhelicopter.databasix.com:

> You're slipping and Leythos too. I released a beta version over 2
> months ago in my forums not here. You both missed it.
>
>

So give us a link to see this vista compatable program of yours. Tell me,
mr wannabe coder, what is the primary difference between XP and vista in so
far as malware removal is concerned? IE: Can you tell us why his script
doesn't currently work with vista? (grin)


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[pcbutts1]

I can care less why their script does not work on vista. Mine does with very
little modifications.


--

Newsgroup Trolls. Read about mine here http://www.pcbutts1.com/downloads
The list grows. Leythos the stalker http://www.leythosthestalker.com, David
H. Lipman, Max M Wachtell III aka What's in a Name?, Fitz,
Rhonda Lea Kirk, Meat Plow, F Kwatu F, George Orwell



"Dustin Cook" <spamfilterineffect.see.sig@nowhere.com> wrote in message
news:Xns9966AF99B1FB9HHI2948AJD832@69.28.186.121.. .
> "pcbutts1" <pcbutts1@leythosthestalker.com> wrote in
> news:f6msks$2oc$1@blackhelicopter.databasix.com:
>
>> You're slipping and Leythos too. I released a beta version over 2
>> months ago in my forums not here. You both missed it.
>>
>>
>
> So give us a link to see this vista compatable program of yours. Tell me,
> mr wannabe coder, what is the primary difference between XP and vista in
> so
> far as malware removal is concerned? IE: Can you tell us why his script
> doesn't currently work with vista? (grin)
>
>
> --
> Dustin Cook
> Author of BugHunter - MalWare Removal Tool - v2.2c
> email: bughunter.dustin@gmail.com.removethis
> web..: http://bughunter.it-mate.co.uk
> Pad..: http://bughunter.it-mate.co.uk/pad.xml
>

[Dustin Cook]

"pcbutts1" <pcbutts1@leythosthestalker.com> wrote in
news:f6p29n$cr4$1@blackhelicopter.databasix.com:

> I can care less why their script does not work on vista. Mine does
> with very little modifications.
>
>

So can you answer my question then? The modificational differences, if you
will, between vista and xp in so far as malware removal goes. I await your
response. This is your chance, pcbutts, to prove to us that you haven't
been bsing us all this time. Prove us wrong, post some code, explain it!

Answer my question.


--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[pcbutts1]

I see your crappie program "STILL" detects these false positives,
ICSharpCode.SharpZipLib.dll
C:\WINDOWS\Installer\{B510A987-487E-4C66-9F4F-D386AC275715}\NewShortcut1.exe.
If you think I am going to tell you how to fix your buggy program so it will
be fully compatible with Vista then you are a bigger fool then I thought you
were.

--

Newsgroup Trolls. Read about mine here http://www.pcbutts1.com/downloads
The list grows. Leythos the stalker http://www.leythosthestalker.com, David
H. Lipman, Max M Wachtell III aka What's in a Name?, Fitz,
Rhonda Lea Kirk, Meat Plow, F Kwatu F, George Orwell



"Dustin Cook" <spamfilterineffect.see.sig@nowhere.com> wrote in message
news:Xns9967671524CCHHI2948AJD832@69.28.186.121...
> "pcbutts1" <pcbutts1@leythosthestalker.com> wrote in
> news:f6p29n$cr4$1@blackhelicopter.databasix.com:
>
>> I can care less why their script does not work on vista. Mine does
>> with very little modifications.
>>
>>
>
> So can you answer my question then? The modificational differences, if you
> will, between vista and xp in so far as malware removal goes. I await your
> response. This is your chance, pcbutts, to prove to us that you haven't
> been bsing us all this time. Prove us wrong, post some code, explain it!
>
> Answer my question.
>
>
> --
> Dustin Cook
> Author of BugHunter - MalWare Removal Tool - v2.2c
> email: bughunter.dustin@gmail.com.removethis
> web..: http://bughunter.it-mate.co.uk
> Pad..: http://bughunter.it-mate.co.uk/pad.xml
>

[Dustin Cook]

"pcbutts1" <pcbutts1@leythosthestalker.com> wrote in
news:f6rmte$rc0$1@blackhelicopter.databasix.com:

> I see your crappie program "STILL" detects these false positives,
> ICSharpCode.SharpZipLib.dll
> C:\WINDOWS\Installer\{B510A987-487E-4C66-9F4F-D386AC275715}\NewShortcut
> 1.exe. If you think I am going to tell you how to fix your buggy

Yes it does, for the time being. You won't paste the full log where the
bad positives are identified so that they can be removed. *You* could
have those removed by posting the file BugHunter created for you. Since
you refuse heh, to do so, I'm not concerned that it still detects them.
I'm not going to scan over 100,000 samples to remove them at this time.
Your the only person who has identified having those files which
BugHunter shouldn't detect. You can rub my nose in it all you like, but
it doesn't matter. Everybody knows you have the information I would need
to fix it, and you won't provide it.


And btw, they are indeed false positives, but it is *not* a bug in
BugHunter. It's two bad records, which like I said, could be removed
without any changes whatsoever to the software itself.

> program so it will be fully compatible with Vista then you are a
> bigger fool then I thought you were.

I got news for you **** for brains, BugHunter already works on vista.
Your futile attempt to evade my point blank question has failed
miserably. I never needed a code pasting thief to help me with Vista. I
have more access to Microsoft software than you even know exists,
****head. Your just an end user who works at help desk. You are nothing,
you will never be anything.

And btw, Your script is seriously lacking compared to BugHunter. As of
current release (which will probably be updated this evening) it detects
9,930 unique samples. Your script 2+megs in size deals with how many
exactly? *hahahaha*

The update will bring the known amount of malware to well over 10,000;
And I still fit on a floppy! *muahahah*



--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[Dustin Cook]

"pcbutts1" <pcbutts1@leythosthestalker.com> wrote in
news:f6rmte$rc0$1@blackhelicopter.databasix.com:

> I see your crappie program "STILL" detects these false positives,
> ICSharpCode.SharpZipLib.dll
> C:\WINDOWS\Installer\{B510A987-487E-4C66-9F4F-D386AC275715}\NewShortcut
> 1.exe. If you think I am going to tell you how to fix your buggy


PcButts, I suspect you might not be telling the truth with respect to
these two files.

Based on information you previously provided when you were more helpful:

C:\PROGRA~1\NPSOFT~1\WTR-WE~1\ICSHAR~1.DLL - Full Match! 1:1264 -
Scanning
Only

C:\WINDOWS\INSTAL~1\{B510A~1\NEWSHO~1.EXE - Malicious JavaScript 2:443 -
Scannin

According to the information I have, those record id's no longer match
your report. IE: They shouldn't be detected anymore.

If you are really having this issue and not making it up, I'd like to see
the logfile BugHunter left behind for you.



--
Dustin Cook
Author of BugHunter - MalWare Removal Tool - v2.2c
email: bughunter.dustin@gmail.com.removethis
web..: http://bughunter.it-mate.co.uk
Pad..: http://bughunter.it-mate.co.uk/pad.xml

[pcbutts1]

Log file opened: 07:23:42 - 07-08-2007
BugHunter v2.2c using database date/time 07-02-2007|23:47:28
Using configuration file: BUGHUNT.INI

=> Nfo: Recursive scanning is enabled.
=> Nfo: BugHunter is only logging found malware...
Action taken, and result.

C:\WINDOWS\META4.EXE
[3:436] [Unclassified.Trojan] No Action Taken

C:\PROGRA~1\LOGMEIN\LMIINIT.DLL
[2:3243] [RAT.RemotelyAnywhere] No Action Taken

C:\WINDOWS\SYSTEM32\LMIINIT.DLL
[2:3243] [RAT.RemotelyAnywhere] No Action Taken

C:\PROGRA~1\NPSOFT~1\WTR-WE~1\ICSHAR~1.DLL
[1:1261] [Full Match!] No Action Taken

C:\WINDOWS\INSTAL~1\{B510A~1\NEWSHO~1.EXE
[2:442] [Malicious JavaScript] No Action Taken

C:\DOCUME~1\OWNER~1.NEW\DESKTOP\DE6AFE~1\REMOVE~1. B
[2:2852] [Exploit.Win32.WMF-PFV] No Action Taken

C:\DOCUME~1\OWNER~1.NEW\DESKTOP\DESKTO~2\SETUPM~1. BUG
[2:678] [Adware.Yazzle.Uninstaller] No Action Taken

C:\DOCUME~1\OWNER~1.NEW\DESKTOP\DESKTO~2\SETUPM~2. BUG
[2:712] [Trojan.Spy.Bancos.Zm] No Action Taken

C:\DOCUME~1\OWNER~1.NEW\DESKTOP\DE5203~1\POSSIB~1\ POSSIB~1.SCR
[3:1514] [Trojan.Ircbot.Aaq] No Action Taken

C:\DOCUME~1\OWNER~1.NEW\LOCALS~1\TEMPOR~1\CONTENT. IE5\09T522ZU\PROFIL~1.JS
[2:1908] [Malicious Script] No Action Taken

================================================== =============
Finished Scanning...202,166 Files

10 known MalWare files were found.
BugHunter took approximately 85 minutes and 28 seconds to scan the folders.
================================================== =============
Log file closed.: 08:48:12 - 07-08-2007


--

Newsgroup Trolls. Read about mine here http://www.pcbutts1.com/downloads
The list grows. Leythos the stalker http://www.leythosthestalker.com, David
H. Lipman, Max M Wachtell III aka What's in a Name?, Fitz,
Rhonda Lea Kirk, Meat Plow, F Kwatu F, George Orwell



"Dustin Cook" <spamfilterineffect.see.sig@nowhere.com> wrote in message
news:Xns9969B7A94EA94HHI2948AJD832@69.28.186.121.. .
> "pcbutts1" <pcbutts1@leythosthestalker.com> wrote in
> news:f6rmte$rc0$1@blackhelicopter.databasix.com:
>
>> I see your crappie program "STILL" detects these false positives,
>> ICSharpCode.SharpZipLib.dll
>> C:\WINDOWS\Installer\{B510A987-487E-4C66-9F4F-D386AC275715}\NewShortcut
>> 1.exe. If you think I am going to tell you how to fix your buggy
>
>
> PcButts, I suspect you might not be telling the truth with respect to
> these two files.
>
> Based on information you previously provided when you were more helpful:
>
> C:\PROGRA~1\NPSOFT~1\WTR-WE~1\ICSHAR~1.DLL - Full Match! 1:1264 -
> Scanning
> Only
>
> C:\WINDOWS\INSTAL~1\{B510A~1\NEWSHO~1.EXE - Malicious JavaScript 2:443 -
> Scannin
>
> According to the information I have, those record id's no longer match
> your report. IE: They shouldn't be detected anymore.
>
> If you are really having this issue and not making it up, I'd like to see
> the logfile BugHunter left behind for you.
>
>
>
> --
> Dustin Cook
> Author of BugHunter - MalWare Removal Tool - v2.2c
> email: bughunter.dustin@gmail.com.removethis
> web..: http://bughunter.it-mate.co.uk
> Pad..: http://bughunter.it-mate.co.uk/pad.xml
>