Zemana Anti-Logger Testing program (Spy Simulation Leak Test), version 1.7.2.234.
Never had an issue with avast objecting to this previously… now it’s coming up as Win32:Malware-Gen under avast definitions 15-04-04-01.
While I believe this is a F/P, I will acknowledge that several other a-v programs are now detecting it as well, typically under a generic or PUP category, likely because of its relation to the (Anti-)Keylogger.
Are you saying that I submitted this file to avast 2+ years ago? Or that someone (else) had already questioned this file back then??
Suffice it to say that I’ve run complete scans on my systems over the past year or two, withOUT avast questioning this file. In addition, I understand that Win32:Malware-Gen (as well as Evo-Gen) are more prone to F/P’s than non-heuristic methods. So I have to ask again, has avast changed its classification of this file, now deeming it (generic) malware — perhaps a PUP — or is this new finding a F/P [which was not being detected in my previous scans]?
Think the detection is a PUP detection by 11 AV programs. A PUP is no virus but a potentially unwanted program (could be because of added bundled software/adware/nagware/junkware. If you have intentionally downloaded the program yourself and are aware of what it does, you can ignore that detection. What Pondus means that the first VT results to denote it as PUP were detected that time ago. Re: http://www.herdprotect.com/aklt.exe-07a478caafb1079b0f8110fc6532af78a6bab132.aspx
Also consider: http://www.freefixer.com/library/file/AKLT.exe-159773/ (where only 19% of users decided to no longer have it installed).
If you check the Additional Information tab on the VT results page, you get to know when it was first submitted and that the MD5 file hash ( 27c1776f47c7e25e38b55ab3e83b32b0 ) is the same.
It just means that it has been around for some considerable time and what you submitted is the same - as it has the same unique MD5 file hash.
A detection on this would be akin to an eicar virus test.
These kind of tools are being detected because they can bypass the Windows Activation Technologies in Windows 7, but they are not known to be extremely dangerous programs. Therefore the PUP detection. Microsoft security software detects and removes this threat.