Multiple A2 3.0 false positives

[Mrkvonic]

Hello,

Seems like a week of FP. Damn.

A2 got eager with their detection and now flag BSplayer as something... although it is one of the very first versions (no adware and crap).

Plus, they got confused with inprocserver32 in a few locations.... Trace.Registry.Blubster... whatever. The detected item is smartui2.ocx, used by CDBurnerXP Pro.

I have noticed this on the A2 forums as well, but they don't seem to want to fix it... naughty people.

Mrk

-------------------------------------------------------------

a-squared Free - Version 3.0
Last update: 09-07-07 7:14:52 PM

Scan settings:

Objects: Memory, Traces, Cookies, C:\WINDOWS\, C:\Program Files
Scan archives: On
Heuristics: On
ADS Scan: On

Scan start: 09-07-07 7:18:01 PM

c:\program files\webteh\bsplayer detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\doc detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\lang detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\plugins detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\delphi detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample_subtitles detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\skins detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\skins\base detected: Trace.Directory.BSplayer
c:\documents and settings\mrkvonic\start menu\programs\webteh detected: Trace.Directory.BSplayer
c:\program files\webteh\bsplayer\bplay.exe detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\bspfilters.sam detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\bsplay.exe detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\bsplayer.exe detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\bsplayer.exe.manifest detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\bsrendv2.dll detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\changes.txt detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\doc\cmdline.txt detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\doc\ini_files.html detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\plugins\oldskin.dll detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\bsp.h detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\bsp.pas detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\bspplg.h detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\bspplg.pas detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sample_plugin.def detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sample_plugin.dsp detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sample_plugin.dsw detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sampleplugin.c detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_sub.c detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_sub.def detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_subtitles.dsp detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_subtitles.dsw detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample\sample_plugin.dpr detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample_subtitles\sample_sub.dpr detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\skins\base\prevd.bmp detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\skins\base\rgn.dat detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\skins\base\skin.ini detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\skins\bat lite.bsz detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\skins\mediabox v-1.bsz detected: Trace.File.BSplayer
c:\program files\webteh\bsplayer\skins\mediabox v-2.bsz detected: Trace.File.BSplayer
Value: HKEY_USERS\S-1-5-21-1220945662-1275210071-839522115-1003\Software\BST\bsplayerv1 --> AppPath detected: Trace.Registry.BSplayer
Value: HKEY_USERS\S-1-5-21-1220945662-1275210071-839522115-1003\Software\BST\bsplayerv1 --> AppVer detected: Trace.Registry.BSplayer
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BSPlayer1 --> DisplayName detected: Trace.Registry.BSplayer
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BSPlayer1 --> UninstallString detected: Trace.Registry.BSplayer
Value: HKEY_CLASSES_ROOT\CLSID\{8C11E411-860C-4BAE-A0F4-CBE8DAE6B84C}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_CLASSES_ROOT\CLSID\{9583E033-1CCC-446E-A858-317A0620EE66}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_CLASSES_ROOT\CLSID\{9E6A5B24-1FBC-42D9-870D-07D5C5738075}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_CLASSES_ROOT\CLSID\{EA6DA0D5-1021-4F55-ACBA-D1D8BA7EAB2C}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_CLASSES_ROOT\CLSID\{EE12598F-BD9F-4BAD-BB13-D49829A024FE}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8C11E411-860C-4BAE-A0F4-CBE8DAE6B84C}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9583E033-1CCC-446E-A858-317A0620EE66}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9E6A5B24-1FBC-42D9-870D-07D5C5738075}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA6DA0D5-1021-4F55-ACBA-D1D8BA7EAB2C}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE12598F-BD9F-4BAD-BB13-D49829A024FE}\InprocServer32 --> ThreadingModel detected: Trace.Registry.Blubster

Scanned

Files: 21857
Traces: 399970
Cookies: 50
Processes: 45

Found

Files: 0
Traces: 59
Cookies: 0
Processes: 0
Registry keys: 0

Scan end: 09-07-07 7:31:42 PM
Scan time: 12:13:41 AM

[Longboard]

why are you testing Windows AS apps ??

[Mrkvonic]

Hello,
Because I'm like Texas Ranger - keeping an eye on everyone.
That way, when someone says blah blah blah, I can counter with blih blih blih.
Contributing to the world with my infinite goodness.
Mrk