Download from hxxp://www.flvto.com
FYDLoad.exe <—
please remove download link from forum, sample is sendt avast lab and Malwarebytes lab
Next time use one of the options posted below to send samples to avast lab
You can upload files and report issues to avast here : http://www.avast.com/contact-form.php (select subject according to Your case)
You can use mail
send to virus@avast.com in a password protected zip file
mail subject: False Positive / undetected sample (select subject according to your case)
zip password: infected
or you can send files from avast chest
how to use the chest. http://www.avast.com/faq.php?article=AVKB21
@ Pondus
Well the subject isn’t false positive as:
- avast isn’t detecting it and I’m not sure it should.
- VT only has 1 hit from 47 and that is from VBA32.
- the detection is by hitman pro, which could well be the one to report a possible false positive to.
- the detections by hitman pro are al registry entries and no file detections.
The OP doesn’t give any info on what action they think should happen, e.g. no avast interaction in this at all.
1. avast isn't detecting it and I'm not sure it should. 2. VT only has 1 hit from 47 and that is from VBA32.yea i think it is a FP .... or it is bundled with a PUP install
That is the point, if it were a possible bundled PUP, then I would expect there to be associated file detections by hitman, where all we have here are registry detections.
download link removed. done ok. I understand. thanks for http://www.avast.com/contact-form.php
Norman lab say not infected
Avira lab say it is a riskware APPL/Dldr.Conv.ls.
The file '(%20uploadMB.com%20)%20FYDLoad.exe' has been determined to be 'RISK'. Our analysts named the threat APPL/Dldr.Conv.ls. The term APPL/ denotes an application of dubious origin or which might be hazardous to use. In case you would like to use the application anyway you may want to exclude it from scanning. Further information can be found here. Detection will be added to our virus definition file (VDF) with one of the next updates.