-
Posts
25 -
Joined
-
Last visited
Everything posted by Veremo
-
Submission of Malware Samples for Analysis
Veremo replied to Hardq's topic in Malware Finding and Cleaning
Wow, and how much are you going to pay for such service ? -
If gmail doesn't work for you.. just use different email provider (what about outlook.com ?)
-
This file is genuine Windows file. It is signed by Microsoft and seen on many computers in the world (hxxp://whitelisting.kaspersky.com/advisor#search/8a511a096bb626405f760d432abbfae6a0870c8c) You can't blindly believe online services showing you some indicators.. If they were so good, there would be no space in the market for proper AVs
-
Is there a version of the FreeFileSync installer without advertisements?
-
ZoneAlarm update recognized as threat
Veremo replied to davide445's topic in Malware Finding and Cleaning
It seems that ESET is the only top vendor protecting his customers from very beginning: https://virustotal.com/pl/file/bc24c76f1f5ed878104eb9e747715c4117f6dc9fcdab8b30cd5a5780f99dedad/analysis/1462200411/ Yes, the detection is correct and was confirmed by ESET viruslab ZoneAlarm server was not hacked, PUA file is signed by Check Point Software Technologies Ltd -
Obviously NOD32 is able to detect macro viruses
-
"The road to hell is paved with good intentions" Windows executable files have complicated format. If file does not follow this format (ie. was truncated, some parts overwritten) it can't run and is corrupted. Adding detection for corrupted files is useless. It causes increase of virus db without any gain. Bigger virus db means bigger RAM consumption, longer update, slower scanning.
-
If ESET says something is bad, it is. Deal with it "You also understand that feytools.com cannot and does not guarantee or warrant that files available for downloading through the Site will be free of infection or viruses, worms, Trojan horses or other code that manifest contaminating or destructive properties" hxxp://www.feytools.com/feytools-web-site-agreement/
-
My observation - when you send really malicious file your submission is resolved quickly, when you send not malicious/corrupted/useless file - it gets low priority and you often get no answer.
-
hxxp://www.opswat.com/about/media/reports/antivirus-january-2014
-
I think big difference is detection and cleaning of viruses. Only more advanced products can deal with polymorphic file infectors. ESET can do it, MB - can't.
-
Should Eset have a integrated image backup function
Veremo replied to Janus's topic in General Discussion
Partnering with external company means advocating their solution and being blamed for partner mistakes. I don't think ESET should do that in times of surveillance. Arakasi - "Backup and Restore was deprecated in the most recent versions of Windows" (hxxp://en.wikipedia.org/wiki/Backup_and_Restore) -
Same post on Emsisoft forum.. "We are not bad or malicious".. just useless
-
VirusTotal detection for this file: https://www.virustotal.com/pl/file/8ccad1aa7fc94df8a9fb63a9f8c6f0d08a0bd0c80ed1e64d03eb358e4038cbd7/analysis/ Not detected.
-
You try to silently run .vbs from self-extract RAR.. It is suspicious. If you want to use it yourself just add it to exceptions, if you are going to make public - just don't do it, it will be flagged by more AVs I guess.
-
This is the second time you tell about FP doing something suspicious. Maybe there is some problem with you, not with ESET..
-
Trojan found in memory scan and .net framework.
Veremo replied to pejomo's topic in Malware Finding and Cleaning
You can check your RegSvcs.exe with VirusTotal but this is unlikely malicious. Log form SysInspector and/or Sysinternals Autoruns could tell more. -
How many users actively search for Ask! toolbar because they know it's cool software and want to have it on their own computer? I think most of people searching internet for Ask toolbar want to find a way to get rid of it.
-
ESET Nod32 fail when detect award keylogger?
Veremo replied to a topic in Malware Finding and Cleaning
AwardKeylogger is detected as a potentially unsafe application. Please check your settings - hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN3204