Thank you Avast for password stealer... now i use MSE

I just try MSE today with Full Scan and it found password stealer program!!!

http://hpguru.net/wp-content/uploads/2010/08/avast_vaihtui_mse-e1280698905591.png

http://hpguru.net/wp-content/uploads/2010/08/avast_ei_esta-e1280699749883.png

Thank you Avast. Your AV full scan say today nothing found.

I hope your happy with MSE until it doesn’t detect something as there isn’t a single security application that will give 100% protection.

I also hope you get the kind of support that you have got from these forums in the past.

Presumably you have confirmed that detection at VirusTotal.

This detection is in an old backup zip file, which is inert until you extract the file/s in side and try and run any executable at that point the file system shield would scan it. So there was no active password stealer (if the detection is correct) running on your system.

Archive files aren’t scanned by default (see image1) for that very reason they are inert, so unless you did a custom scan and opted to scan all packers (image2) avast wouldn’t have been scanning, so you would never know if avast would have detected it or not if you hadn’t specifically scanned it.

I delete this password stealer… But i surprised with this, but yes i know, that 100% protect is possibly just in nightmare.

I scan again on MSE with full scan and start use a Avast Free maybe. Because in my opinion Avast is better in features.

This .zip is Windows Backup. Vista’s backups on every sunday. So, it has been in my computer previously.

Avast must have been without detect it, because otherwise it would not have come to weekly autobackup. But MSE not found anything on Windows C://. Backup D:// has only this stealer on backup .zip…

But I get all the services normally with my passwords and i use most of this services LastPass, so there no need to manually write passwords.

Huh…???
asyn

Is it possible that LastPass is what is being detected by MSE as a “password stealer”?

Good question… What say other LastPass users?

Which is why it is best not to rush to judgement and fully investigate before deletion, once the nuclear button has been pressed there is no going back.

I have my doubts if it is lastpass (never used it) as surely that would show up in other such backup zips. You have to read deeper into the path displayed to see where this detection is found in the zip file and that appears to be in a firefox cache. So I don’t believe lastpass would be saving stuff within the firefox cache.

OK. I try MSE full scan again and download Avast Free back next.