Well I just report them as I find them, whenever I find the malware link with virustotal results where avast does not detect. I hope this can only make avast detection better and make the user more aware of the fact that danger could lure from every corner. The rules I follow. Always munge links to live malware so they are no longer live links, change to hxtp or wXw or just the link without http://. Establish the original malware links are still live and the malware site has not been closed yet. (use netirk or Idoproxy)… Look up the malware IP and follow up on any other additional malware from the malware domain.
Never click live links to malware but copy and paste into a scanner like virustotal, wepawet, URLVoid.
Do cold renaissance only, so use info that other scanners sites deliver. If you can avoid opening up any live malware links, because a file infector is a sad way of losing your computer to.
Preferably do not use links to analyze on your computer at home, but rather offline in certain lab settings like with the mazilla browser, do not open up a link at jsunpack because if you do not know how to contain malicious script and the malware spills over you can get yourself easily infected. This is only for people that know what they are doing…
If you want to post about found malware code, or finds save the screendumps or active window as a gif image (watch out the size stays well under the maximum attachment size, and if that screendump has info you do not want to spread rub them out by loading up the picture in a proggie like PhotoFiltre etc to remove identifiable data. Just as I did with the attached screendump of the google chrome page with the new found malware links on,
I feel I was perhaps misunderstood. Why I posted? Well, because this one is about as big can of worms as Ask.com toolbar. When it comes to this, it is rather about politics than about AVs and malware. Detect it and you are bad. Do not detect it and you are bad as well. Not to mention the legal aspects here.
I fully understand you, and as with certain adware, trackware and PUPs it is the policy of av’s to flag or not, and I also get annoyed when I only see from SAS by finding up some tracking cookies that tool is still functional. I just report non-detects, most of the time avast catches as soon as the next update. I like it rather that you pointed out to the controversial nature from this find as I fround it at a malware domains resource site (won’t give the link for obvious reasons). I said I like you elaborating on this a bit, because it is info our users here have to be informed about. And that is all there is to it, let the user decide whether they want whatever came with their install crap or not, and let the anti-malware solution decide whether to flag it or not,
Ask.com toolbar,oh yes how annoying.I agree with Doktor,“When it comes to this, it is rather about politics than about AVs and malware. Detect it and you are bad. Do not detect it and you are bad as well. Not to mention the legal aspects here”.Anyway it would be better if av’s could detect that kind of toolbars as PUP,i mean isn’t it annoying if u want to download a program for example and you end up having toolbars etc,how can i say it,it wasn’t “meant” from you to have that kind of programs,last week my friend was surfing facebook i think and he ended up having something called facemoods toolbar+browser hijack and other bad stuff.