Hi Avast you missed a nice keylog/trojan if u want the .exe tell me because you are the only 1 that dont detect it !!! well i dont know if i post on the right section but i just wanted to let you know for you add it to in the list of the virus data base because its really dangerous to let a virus like that on internet.
One chance i dont execute this file !!! my god
Virus scan proof : http://www.virustotal.com/analisis/6284bd01c3556399650ea45195d18b6f
Mr.Agent
Send the sample to virus@avast.com zipped and password protected with the password in email body, a link to this topic might help and undetected malware in the subject.
Or you can also add the file to the User Files (File, Add) section of the avast chest (if it isn’t already there) where it can do no harm and send it from there. A copy of the file/s will remain in the original location, so you will need to take further action and can remove/rename that.
Send it from the User Files section of the chest (select the file, right click, email to Alwil Software). It will be uploaded (not actually emailed) to avast when the next avast auto (or manual) update is done.
but i wanna be sure if i didnt execute the exe does i will be infected or no
and how do i protect the zip by a password ?
It won’t execute adding it to the avast chest or zipping and password protecting it.
This really isn’t as serious as you believe, I also believe that avast previously removed ard
http://www.viruslist.com/en/analysis?pubid=187865525
Ardamax is not considered a Trojan because it was developed by a legitimate software company and is sold as a legal program. However, authors of many malicious programs are happy to regard it as a ready-made spyware module they can use instead of bothering to write their own. Commercial keyloggers are one of the biggest gray areas in the relations between antivirus companies and software developers. Even though they can be used as Trojans, these programs do have legal and genuinely legitimate applications.
http://www.sophos.com/security/analyses/viruses-and-spyware/trojmdropajm.html
ok then how i protect the file with password
i will just send the file to virus avast i wont do the chest thing u say i didnt executed it so im safe for now until you update the virus data base for its became as a threat
That entirely depends on what zip program you use, but the second option to add it to the avast chest is by far the simplest option and send it directly from there.
i think i found it its say make a password so thank you i hope its that i will send it to virus avast thank you again david until i didnt opened the file its ok
!!! another problem is i cant send any virus because my comp wont let me to do it omg lol
Edit : i have moved it to chest like you said and there no problem i sended it to alwil thx !
do you mean this Ardamax, which seems to be a legit keylogger? we’ve removed the detection few weeks ago…
ScanDoo says the site is not a good one to visit. Click the image below to enlarge.
McAfee SiteAdvisor rates it RED and it is blocked in my HOSTS file.
ook, we’ll reconsider the classification…
If you look at my Reply #3, the quote is clear that it is a legit program, the problem it that it can be used by malware for malicious purposes and this it the problem with tools like this, the AV can’t determine intent.
That is down to the user, did they download/install this and if not then the intent is likely to be malicious. So perhaps the classification should be risk tool, or something like that.
well i reported a virus for ppl be more safe of the user that created that ardamax
well i think avast didnt putted it in the virus data base and i find another virus which its a backdoor trojan which i was about to execute and i didnt have do it i scanned it on virustotal and see what its find http://www.virustotal.com/en/analisis/06f13e1e1d27675185032441553c6cbd
Send the sample to virus@avast.com zipped and password protected with the password in email body, a link to this topic might help and false positive/undetected malware in the subject.
Or you can also add the file to the User Files (File, Add) section of the avast chest (if it isn’t already there) where it can do no harm and send it from there. A copy of the file/s will remain in the original location, so you will need to take further action and can remove/rename that.
Send it from the User Files section of the chest (select the file, right click, email to Alwil Software). It will be uploaded (not actually emailed) to avast when the next avast auto (or manual) update is done.
David can i just send the upload link to them ?
Well if you have this sample on your system it is easy to add it to the user files section of the chest and upload it from there.
They can analyse a file, they can’t analyse the virustotal results page.
ok i will send the 2 files
But after i sended it can i remove the files of my pc because im really scare about these files !
They can do no harm in the User Files section of the chest (delete the original copy in the original location). With them there it also allows you to periodically scan them within the chest, when avast adds them to the VPS you will see them detected.