I recently switched from AVG to AVAST.So far I like the avast but have one rather large concern.
I am also using cyberhawk.
Today while posting on a forum cyberhawk popped up a high risk warning stating that avast was logging my keystrokes.
This is the location of the keylogger
program files\ALWIL Software\Avast4
Is that a legit avast file and if so, why is it logging my keystrokes?
program files\ALWIL Software\Avast4 is the location (directory) for a default installation of avast! Does Cyberhawk give you a file name? Seems like a false postive.
There is no keystroke logging functionality in avast!.
One or two modules have keystroke detection code (so that avast! is able to tell whether the user is typing on keyboard, and if not, start VRDB generation, for example). But the keystrokes are certainly not logged anywhere, the only information detected is if the user types anything, not what is being typed.
I’ve only gotten it twice. Both times today while posting on a forum.
I denied and said remember, and then my firefox browser shutdown.
I had to remove the denied thingie from cyberhawk because firefox acted all buggy when I reopened it.
I scanned those files with ewido and they were clean btw.
I take it that it was the web shield exe you scanned? Good choice, I was going to suggest that.
By denied, you mean cyber hawk would stop webshield from doing what it was trying to do? If that is the case, it may explain why your browser started acting up. Webshield moniters internet traffic, so if it was partially disabled…
Is it possible that cyberhawk is misinterpeting what is happening when you post? I don’t know how to word this. It’s like cyber hawk sees the passing of keystrokes through webshield as key logging. Or…
Could a keylogger be using the webshield proxy and cyberhawk is only seeing webshield?
What os and firewall are you using?
Was it the same forum? Does cyberhawk forum have any comment on this happening? There must be other avst/cyberhawk users.
Cyberhawk also popup a warning when I use Opera, uTorrent, VS2005 Express and some other programs, because of “Keystrokes Logged”.
If you think these programs are safe, just allow and let cyberhawk remember it.
I don’t think cyberhawk is an antivirus software, and its warning does not mean the program is dangerous.
Maybe these actions are usually performed by some virus, normal programs also need them for some functions.
I tend to agree with you, espcially after your post about the update and that another user reports the same with other programs. DFXBB says that he\she has only been using cyberhawk for 4 days. All the programs can’t be infected.
@carolk65
What version of cyberhawk are you using? Perhaps it is like mauserme posted earlies,…a false positive. If that’s the case, then the cyberhawk forum must be buzzing, given DFXBB’S list of “problem” programs.
Yes, that’s exactly what I meant. That’s what I get for posting at 2AM local time (Up a lot last night with a sick 6 year old. At least he feels better today - yawn) ;D