Ultimate Keylogger on Giveawayoftheday

Discussion in 'other anti-malware software' started by SourMilk, Mar 7, 2009.

Thread Status:
Not open for further replies.
  1. SourMilk

    SourMilk Registered Member

    Joined:
    Mar 31, 2006
    Posts:
    630
    Location:
    Hawaii
    Hi Boys and Girls,
    A toy to play with or a problem to deal with - either way, Giveawayoftheday.com is giving away free copies of Ultimate Keylogger today 7 March.

    SourMilk out
     
  2. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    it is time to test Zemana and SnooPFree and see them in action:thumb:
     
  3. Victek

    Victek Registered Member

    Joined:
    Nov 30, 2007
    Posts:
    5,127
    Location:
    USA
    Yeah, I was thinking that too. I'd be interested to hear the results.
     
  4. Dark Star 72

    Dark Star 72 Registered Member

    Joined:
    May 27, 2007
    Posts:
    703
    Here's what PrevxEdge thinks of it:
     

    Attached Files:

  5. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,408
    Good to know. :thumb:
     
  6. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    thanks for the screenshot:thumb: cool test;) so that's mean that prevx edge catch comercial keyloggers,nice:) very happy about it:thumb:
     
  7. BrendanK.

    BrendanK. Registered Member

    Joined:
    Jun 23, 2008
    Posts:
    520
    Location:
    Australia
    Seems Online Armor doesn't detect the keylogging, screenshots or clipboard logging.

    Nor does Zemana detect it...It's definitely logging however.

    Using Anvir Task Manager with process hidden from Task Manager. It picks it up as dangerous (34%). Uploaded it to VirusTotal from Anvir.

    Results from Anvir:
    No file description available
    Found 0 day(s) ago
    Can use Internet
    Overall security risk: 34%

    VirusTotal analysis:
    5/39 detected the keylogger.

    Props to Prevx, Symantec, Mcafee, eSafe and Nod32 for detecting the commercial keylogger.
     
    Last edited: Mar 7, 2009
  8. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    that is because a lot of programs dont detect commercial keyloggers ON PURPOSE. this doesnt mean u are less secure, as long as you have a password to your user account, there should never be a prob with someone installing a commercial keylogger like this without u knowing, and who in ur house would want to anyways?
     
  9. hammerman

    hammerman Registered Member

    Joined:
    Jul 14, 2007
    Posts:
    283
    Location:
    UK
    Is that OA Free or paid?
     
  10. BrendanK.

    BrendanK. Registered Member

    Joined:
    Jun 23, 2008
    Posts:
    520
    Location:
    Australia
    Paid.

    And @ Firzen: You never know where a keylogger may come from. A risky download perhaps? Maybe even just browsing around the web.

    I am not saying I will get infected with the keylogger, however I am saying people without the adequate protection may.
     
  11. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    the difference is, someone would have to physically go onto your computer and install a keylogger like this, so that is a reason why some products dont detect commercial keyloggers on PURPOSE. thats why they didnt alert u, and this type of keylogger cant be invisibly downloaded and installed like a malware keylogger. thers a difference. unless there's some untrustworthy person in your house, u have nothing to worry about, about ultimate keylogger not being flagged.
     
  12. BrendanK.

    BrendanK. Registered Member

    Joined:
    Jun 23, 2008
    Posts:
    520
    Location:
    Australia
    Norton Security Scan offered free was able to detect the keylogger and remove it.

    Online Armor's firewall was able to detect the log file being sent via email, however, not FTP or Lan.

    KL-Detector was able to detect the log file made by the keylogger.

    I-Hate-Keyloggers successfully stopped the keystrokes being recorded.

    Privacy Keyboard detected the keylogger.

    @Firzen: Even so I would like it to be detected, just in case, because you never know. :) Plus I have made this keylogger completely invisible so who is it to say that it won't be used for malicious purposes ;)
     
  13. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
  14. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    how can u never know with THIS type of a program? thats fantastic that uve made it completely invisible, that doesnt change the fact that the only way this is gunna get an ur system is if you PHYSICALLY install it, and as i said, unless there's someone untrustworthy in ur house, thats not gunna happen. this isnt an accurate why of testing these anti keylogger apps detection ability and whether or not it is effective against ACTUAL MALWARE keyloggers. there's no way this program can be INSTALLED invisibly, it can be made invisible after that, but what does that matter other than so the user doesnt see it (if its not you).

    lets say u have a kid and install this keylogger to monitor things, do u want ur kid getting some weird popup about keyloggers when u knowingly installed it urself, and im sure you wouldnt want them to know about it. its unethical, but not malicious in anyway.
     
  15. BrendanK.

    BrendanK. Registered Member

    Joined:
    Jun 23, 2008
    Posts:
    520
    Location:
    Australia
    I could argue further, but I am not going to. These debates could go on forever, and I guess the anti* companies face the same dilemma. What to detect or what not to detect.

    It was a nice argument(debate) though Firz :D
     
  16. GES/POR

    GES/POR Registered Member

    Joined:
    Nov 26, 2006
    Posts:
    1,490
    Location:
    Armacham
    I somehow doubt OA n Z would whitelist commercial keyloggers, think again Firzen - they wouldnt whitelist that wich they normally would detect. HIPS are supposed to intercept actions like these malicious or not. Everythingh u just said applies to AS only
     
  17. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    it doesnt only apply to AS, because Zemana has their own whitelist for antilogger, but i am not sure whether it does or does not whitelist this since Zemana isnt actually just a traditional HIPS that alerts to everything, im sending them an email to ask about this, ill post back when i get a response.
     
  18. GES/POR

    GES/POR Registered Member

    Joined:
    Nov 26, 2006
    Posts:
    1,490
    Location:
    Armacham
    Sure but just think about it, it wouldnt make sense for antikeyloggers to whitelist certain keyloggers - who would benefit from this and i dont think customers will appreciate that but ok i await ye reply :)
     
  19. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    Does it show something in "Keylogges" section ? The problem may originate from executable been signed by trusted vendor, for example. In this case OA would not alert. To run a clean experiment you need to untrust keylogger executables and remove (if any) related records on the "Keyloggers" tab.
     
  20. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    maybe comercial keyloggers are not black listed or they are white listed:D in data bases
     
  21. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    That may be true for siganture based software but not for HIPS like OA , Zemana etc.
     
  22. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    Zemana isnt exactly a HIPS. and yes, Zemana DOES use whitelisting, now whats on the whitelist i dont know.
     
  23. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    I don,t expect them to white list these keyloggers. I guess Zemana is very similar to a classical HIPS with less filters, altered pop ups and a white list to decrease the no of pop ups.
     
  24. jmonge

    jmonge Registered Member

    Joined:
    Mar 20, 2008
    Posts:
    12,883
    Location:
    Canada
    i speak for my self if i really want to make sure i stop keyloggers in real time i will prefer 100 times more to go with a pure hips instead of such technologgy that you may think did it block it or not,i know for sure a hips system will give you pop ups of malicious activities;)
     
  25. alex_s

    alex_s Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    1,251
    But what does prevent HIPS to whitelist something on a signature basis ? I know for sure OA has trusted and untrusted signatures database and if some signature fits in trusted list then this program is treated as trusted. This helps to avoid a lot and a lot of unnesesary alerts.
     
Thread Status:
Not open for further replies.