maxming2333 / puttycyg

Automatically exported from code.google.com/p/puttycyg
0 stars 0 forks source link

20101029 version of cthelper.exe gets flagged as infected by "Bloodhound.SONAR.1" by Symantec AV #51

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
Please read the FAQ and check existing issues before creating a new issue.

What steps will reproduce the problem?
1. Nothing. SAV pops up on its own sometime after running a putty cygwin 
terminal
2.
3.

What is the expected result?  What happens instead?

PutTTYcyg version:
Cygwin version:
Windows version:

If you are experiencing performance issues, do you have a multi-core system
or multiple CPUs?

Do you have any firewall software installed?

Please attach your PuTTY configuration.  Use this Windows command to create
putty.reg:
REG EXPORT HKEY_CURRENT_USER\Software\SimonTatham\PuTTY putty.reg

Please provide any additional information below.

Original issue reported on code.google.com by jdryf...@gmail.com on 16 Nov 2010 at 2:55

Attachments:

GoogleCodeExporter commented 8 years ago
I'm pretty sure it's clean.  I verified it on the following sites:

* 
http://virusscan.jotti.org/en/scanresult/f4e0cfab92a4e1cfc18025457d7de71104ee722
7
* http://www.kaspersky.com/scanforvirus
* 
http://www.virustotal.com/file-scan/reanalysis.html?id=2b03769e9fbd18ae0b91fa492
11d66b75afd7e5bd4598c1a795cefda71399050-1290022186
* http://www.garyshood.com/virus/results.php?r=4ebec78039ba4c45403a0aa405dcb6bd
* http://www.viruschief.com/36de635bce1f717d00d51e4a7ce27f11/index.html
* http://www.fortiguard.com/antivirus/virus_scanner.html

Thanks for the report!

Original comment by medgar123 on 17 Nov 2010 at 7:32

GoogleCodeExporter commented 8 years ago
Thanks for the update. It also scans clean with my SAV. It only seems to get
flagged after it has been running for a few minutes. Suspect it must be
doing some activity that looks similar to this virus.
Will see to setup an exception as I like using putty to Cygwin and it
doesn't run without this.

Thanks and cheers, Jim

Original comment by jdryf...@gmail.com on 17 Nov 2010 at 10:18

GoogleCodeExporter commented 8 years ago
I am experiencing the same issue.  SEP 11 started quarantining it on 11/17/11 
for me.  Upon restoring the file putty.exe and configuing an exception the 
application still flags it as the virus mentioned above on subsequent 
connections.  

Original comment by JeffJMar...@gmail.com on 22 Oct 2011 at 1:21