-
Posts
29 -
Joined
-
Last visited
Posts posted by Wolf Igmc4
-
-
Add a behavior blocker, based on the reputation system of Eset. Yes, I said this some time ago, but if Eset don't add it, in the future, this will be a big problem.
-
24 minutes ago, persian-boy said:
Suggestion: Reputation scan
A costume scan that scans the whole hard drive with live grid and gets reputations for everything(Dll, Exe,...) on the machine.That's a good suggestion.
-
17 minutes ago, persian-boy said:
What about a sandbox? I guess it is much important than Anti-Theft I'm still waiting to see a purge button for not existing Rules in both Hips and firewall.
Also showing the command line when Hips alert for cmd!and provide a way to submit the FP from the Gui, not email :|
Also an option to let us sort the rules based on the directory.
ESET have sandbox, but we just can't access it. But I agree with you, I want to manage apps in a sandbox.
-
You can add a vulnerability detection module, and something like the USB vacinne of Panda.
-
19 minutes ago, Marcos said:
You can exclude potentially unwanted and unsafe applications from detection by name.
No, for example: A threat has been detected (MSIL/blabla) when X tried to access X.
I just want to block the popup of the specific ´MSIL/blabla´.
If for example another threat is detected (for example, MSIL/Blabla25) is detected, it´s popup will appear.
I don´t know if you understand me :/
-
15 minutes ago, John Alex said:
see here:
"Kaspersky Lab took hold of this opportunity to develop the world's first UEFI-compliant antimalware product...."
https://media.kaspersky.com/en/business-security/Threats_to_UEFI.pdf
the document doesn´t say if this is for business or for home users.
-
3 minutes ago, itman said:
It has already been noted that Eset takes a while to publish a sig.. In the interim, it will blacklist the file until analysis will fully determine the file status.
Ok, sorry.
-
8 minutes ago, itman said:
Again ............. Does Eset detect it via blacklisting?
Idk
Just informing.
another one:
-
-
An option to block individually notifications of a particular threat.
-
Oh, I didn´t know about beta versions of Eset. Is there any blog where this updates are released? Can we use the beta on a normal PC (not for testing)?
Thx.
-
-
I discovered the problem. It´s the AdsBypasser script from Tampermonkey extension. I´ll inform the owner.
Thanks.
Edit: They already have been informed, it will be fixed in next release, it´s a compatibility problem with Tampermonkey, with Violentmonkey the alert don´t appear.
-
Chrome, yes.
Oh, and not only appears in Google sites. In most of sites it occurs (in Eset forum not).
And I´m not infected with any malware.
-
-
Well I didnt know about this software, but I think 57$ every year is a bit expensive.
-
That's It, I just don't know if Eset can block It.
-
Eset could add folder protection too.
-
Download Process explorer (https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer), run It as admin, in options click on virus total and allow terms and conditions. Then, in the tabs, you will see "Virustotal", click It and find a program with detections that you dont know his origin. Suspend It. Go to his Path, and try deleting It. If you cant, remember the path and run Windows in safe mode, go to the path and delete the files.Then, reboot.
If the malware persist, download Autoruns (https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns), another Microsoft essentials program. In options allow Virustotal terms, then find an entry with derections, make sure it's not an important entry or a program you installed, and delete It. You can try finding the name of the entry, just go to the path where the malware is alocated, copy it's name and find it on Autoruns.
Edit: You can also try using second opinion scans first, I recommend Hitman Pro, Zemana and Malwarebytes.
If you are not able to kill the virus, run win in safe mode, hit Windows key and R, and write Rstrui.exe, and select a copy where the virus wasnt in ur pc.
If any important file is deleted, download shadow Explorer and find in the backups your files (you can find tutorials in YT).
-
33 minutes ago, Marcos said:
There are tons of legitimate files that would appear suspicious to LiveGrid because of low age or count. It could be custom applications made for and used by particular companies or new versions of legitimate software after the release.
In my opinion, I'd rather sacrifice usability for security, but you are right
-
26 minutes ago, Marcos said:
A behavior blocker would cause quite a lot of false positives or would bother the user to make a decision him/herself every while and then. Our aim is to keep ESET install-and-forget, without asking the users for an action. The more questions, the higher probability of wrong decisions and subsequent infection. ESET leverages a handful of advanced technologies explained at https://www.eset.com/int/about/technology/ to achieve maximum protection without nagging the user or causing false positives.
Eset Live Grid know lot of programs to avoid false positives, so a behavior blocker isn´t a bad idea...
-
-
Another suggestion: We all know that we can change the settings to predeterminated, but we are forced for do this for all the settings.
Ok, instead of this, Eset could add a button to do this in all sections of the settings (Antivirus, firewall, etc.).
-
https://virustotal.github.io/yara/
If not, it may help researchers of Eset to improve detection and prevention of the AV solution.
HIGH CPU USAGE
in ESET Internet Security & ESET Smart Security Premium
Posted
Are your laptop from 2003?