Jump to content

Reza Shamsudin

Members
  • Posts

    35
  • Joined

  • Last visited

Everything posted by Reza Shamsudin

  1. Yes, we too like the explanation from Eset IT Specialist.
  2. Is it repair the MBR will make the Trojan also disappear from Eset detection/notification when log-in Windows 10?
  3. Still load slowing here at Malaysia. Almost 1minute or more
  4. We're having problem with our customer can't remove the Win32/Pitou.J Trojan from the Windows OS (HDD) using Eset Nod32 Antivirus. We also guide the customer using Eset SysRescueLive CD using bootable USB Drive still the Trojan can't be removed (refer attachment name : FAIL CLEAN WITH ESET SYSRESCUELIVE)
  5. Hello, Just want to report that https://my.eset.com/license website now a bit slow to load. Too slow loading now. Previously don't have problem like this.
  6. Refer it from here, sample uploaded to Virus Total : https://www.virustotal.com/#/file/be5cf113596f40f6f1b0b3ec5f8d5cfe1a7572926258b32916d55633afe07df5/detection Other reputable Antivirus as below detected it as a Trojan. BitDefender Comodo F-Secure Sophos AV Vipre Microsoft TrendMicro Webroot
  7. Is it False Positive (FP)? Because other reputable Antivirus Engine already detected it and label it under Malware : Trojan.
  8. I've already submit the sample via Eset Nod32 Antivirus program (submit for analysis) many times. But no respon yet from Eset or latest update still don't detect it as a Trojan yet. I can't send the Trojan sample via my Gmail. Gmail rejected it (maybe their Antivirus Scanner detect as a Trojan).
  9. Hi Eset Support Team, To extract use password : "infected" Refer also attachment, sample detected by 31 Antivirus Engine on virustotal.com Note : Every important function such as PUA, Eset LiveGrid Setting, etc is already enabled. But still Eset Nod32 doesn't detected it as a Trojan yet. SAMPLE.zip
  10. TQ Itman for the details & explanation. Yes it's a bad idea to download the cracked software. But it's for the testing purposed only. Some of the users out there, suggest all of the computer users to use the Hard Disk Sentinel (of course pirated one). So I try to download & checkup the pirated/cracked software is it safe or else. And yes the result already told me, it's unsafe. So this kind of result I need to tell the computer users, advising them DO NOT TRYING TO INSTALL the pirated/cracked software on their PC's.
  11. I did not execute it yet. Just scan it with the option above is ON. Anyway don't worry, Antivirus is still made by human being. It have some flaws too. I already submit the sample to Eset. Just waiting for the latest definition
  12. Enable detection of : potentially unwanted applications potentially unsafe applications suspicious applications Done, of course above option was selected itman. I use my Eset Internet Security. Not Smart Security anymore.
  13. The main reason for "Folder Protection" suggestion was to protect our previous/old data that we don't use it frequently. If Eset won't put this functionality soon Avast, Bitdefender will having more customers other than Eset itself.
  14. I have already done submit the "trojan" sample to Eset yesterday. Below the information said EsetNod32 detected it. But not with my Eset Internet Security.
  15. Sometimes, "whitelisting program" (for example Vodoo Shield) do a good job in blocking Viruses. The picture below was taken yesterday, while my Eset Internet Security was failed to detect the "Trojan" even in virustotal.com told EsetNod32 detected it.
  16. "For example, ransomware payload .exe is named the same as well known system or application process. Alert is generated that User\xxxx\AppData\Local\Temp\explorer.exe is attempting file modification activities. Would the average user have the technical knowledge that the legit storage location for explorer.exe is C:\Windows\System32 directory?" Quoted from itman above : For this one, we (IT Support/IT Technical) will guide them the legit process of explorer.exe will only coming from C:\Windows\explorer.exe directory itman. Not guide them one by one. We will use a group platform to give them the correct information, a reminder. As for example, me myself currently advising all of the computer users (basic, average, expert computer users) on my Facebook Group : www.facebook.com/groups/cegah.ransomware.malaysia (Prevent Ransomware Malaysia Facebook Group) This is how I am advising computer users in my country : Malaysia.
  17. Not yet Sir. But yes we will try to test it later. But anyway previously I have tested the Cerber Ransomware attack with manual settings on folders by configure the Security & Permission. Yes it's fail to encrypt the folder because of didn't have the permission to overwrite the folders.
  18. This functionality is what I mean need to put in future Eset version. This is taken from Avast website to show you the function and what do I mean in the thread here.
  19. That's the point for "protected folders & data inside it". A basic concept for read, write, modify on the folders and inside it. I don't know if either Windows Defender, Avast OR Bitdefender using the same basic concept. Here one of the simple tools for protect folder and the content inside Thumb Drive or External Drive from Sordum.
  20. Can Ransomware injected into an Office process or run as a VBA macro possibly overwrite the folders security settings? What if the setting is "All Deny" Sir?
  21. Hi, Just a suggestion. In the future Eset version (11,12,13 and so on...). It might useful if Eset team will include the "folder protection" functionality on their Antivirus program. Avast, Bitdefender, already put the function on their Antivirus if I'm not mistaken. Even Microsoft Windows Defender latest version also included this function. The main objective is to to protect the folders & the content inside from overwrite by the Viruses, Ransomware (encrypted). Actually for Advanced IT users, we all can do it manually. But users will always love a simplicity just build-in function & just a few clicks for setup the folder & content protection.
  22. Thank you jdashn & itman for the opinion. For me yes, the setting under Windows/Software Policies do help in viruses, malware, ransomware prevention. But the Windows/Software Policies can't take over the job had been done by the Antivirus for so long protecting the computer users.
×
×
  • Create New...