TheMalwareDiscoverer
-
Posts
15 -
Joined
-
Last visited
Posts posted by TheMalwareDiscoverer
-
-
23 hours ago, GreggG said:
If the cleaning option was set to strict, the files would still move the to quarantine.
yeah but also outdated virus and PUA were removed differently from normal cleaning
-
13 hours ago, King Grub said:
No, I an not a n00b. Trust me, I run a very tight ship here, and the issue is not on my computer. This happens, as I wrote earlier in this very thread, on new Windows 10 installations with Nod32 as the first program installed after basic drivers and Windows updates.
I have never defined you as a noob; now you guys are talking about problem on windows 10 and also one of my friends had this and he resolved installing windows 8 (also because he didn't like win 10) so I am thinking: maybe is the "new" (new because it has cloud protection and other improvements contrary from windows 8 and 7) windows defender of windows 10 the problem? I am thinking about this because if eset is the first program the issue must be made by a preinstalled official windows program so maybe windows defender or maybe windows firewall but I don't know; obiouvsly it could be also a problem of the AV and maybe it's true but both on my win 10 and on my win 8, Eset Nod32 Antivirus works perfectly so I have excluded this option first.
-
8 hours ago, HienKieu said:
Thanks for sharing, but Are you sure that if i set "Strict Cleaning" mode both on Real-time and On-demand scanning, it will be show Actions in the column?
Yeah, if you want Strict Cleaning mode on the scan you must set up this option on On-Demand scanning; if you set it up only on real time protection the cleaning is standard for On-demand scan. These threats as Marcos told you are very old so very innocuus and because of this Eset don't remove these owing to their outdated architecture and mode of action so they make little damages. If it doesn't work this method of set "Strict Cleaning" also on On-Demand Scanning tell me and I will give you other advices. P.S. after setting "Strict Cleaning" on the on-demand configuration start a Computer scan to remove this threats properly
-
On 25/6/2017 at 1:15 AM, SuperSapien64 said:
Either way I uninstalled Nod32 from my Linux machine. It never found anything probably because of Firejail (sandbox) it must of blocked everything which is good.
you must remember that yes the antivirus can be exploited but also the sandbox can be bypassed
-
2 hours ago, HienKieu said:
Hi @Marcos, @TheMalwareDiscoverer
I sure that i have set "strict cleaning" mode, try with re-scan..but still have not information in "Action" column.
wait man you have "strict cleaning" on real time protection or on "On-Demand" cleaning (alias cleaning you start to do pressing on "computer scan")? Because if you set strict cleaning only on Real time protection and not on On Demand Computer Scan when you start the scan of your pc the threats will be cleaned on normal mode; on the contrary if you set strict mode both on Real time file system protection and to On Demand Computer scan both if the threat is found by the real time protection and if the threat is found on the scan on demand it will be cleaned with "strict mode". Summarizing what I said: you must set strict mode (if you haven't done this) both on Real time file system protection and on On-Demand computer scan in the advanced configuration menu; if you set this tell us it so we can try different way to help you
-
3 hours ago, King Grub said:
No, it has never happened on startup. And Internet is fine when this happens - I am always connected to things like IRC, and when Internet goes down for even a second, it shows in those logs with a disconnect. The problem is not on my PC.
Do you use another antivirus apart from eset?
-
3 hours ago, Marcos said:
That's because all posts have been made just recently. Today is a national holiday in our country, hence it took some time to approve your posts.
sorry marcos I have just remembered now that is an holiday for you today. Sorry again and good holiday
-
Just now, Marcos said:
Even then it should not be blocked by ESET. Let's wait for OP to post more info.
yeah I think that
-
Hi, I have written some message to help people to resolve their problems about eset products but none of this messages was approved; why?
-
maybe it's because when you started the pc it isn't connected to the internet and because eset run automatically at the start of O.S. then if you connect and you try to update clicking manually after internet connection the button "Update Now" it will work
-
you must set on the advanced configuration menu the cleaning mode to high level because that trojans can't be removed with normal cleaning method
-
18 hours ago, Absoluter said:
Hi,
A client called me to say a website of mine contains a virus. I scanned the website with the top 3 website virus scanners and it found nothing. I also scanned the server. Nothing.
here is the URL: hxxp://bookhd.ca
Why does NOD32 (ESET Internet security) report it? She is using Internet Explorer by the way.
Thank you
probably he uses a outdated version of Eset or of Eset's database
-
On 15/5/2017 at 11:27 PM, PaulK79 said:
I have been having the same problem daily for the last weeks. I noticed this both with the 6.4.128 and 6.4.200.1 version.
The only way to stop my MacBook Pro (Retina, 15-inch, Early 2013) from making noise with the cpu fans, is by force-killing the esets_daemon process. But a while later, it starts again, and goes back to 100%. Very annoying!
Top -o cpu gives me:
Processes: 351 total, 3 running, 348 sleeping, 2902 threads 23:23:49 Load Avg: 2.08, 2.58, 2.77 CPU usage: 3.33% user, 14.30% sys, 82.35% idle SharedLibs: 161M resident, 40M data, 38M linkedit. MemRegions: 231992 total, 5360M resident, 118M private, 1359M shared. PhysMem: 14G used (3092M wired), 1841M unused. VM: 4120G vsize, 623M framework vsize, 1271252147(0) swapins, 1284880503(0) swapouts. Networks: packets: 301063499/216G in, 347872491/299G out. Disks: 154072914/7164G read, 80900782/6257G written. PID COMMAND %CPU TIME #TH #WQ #PORTS MEM PURG CMPRS PGRP PPID STATE BOOSTS %CPU_ME %CPU_OTHRS UID FAULTS COW MSGSENT MSGRECV SYSBSD 1157- esets_daemon 99.5 04:59:57 17/1 1 65 23M 0B 101M 92104 92104 running *0[1] 0.00000 0.00000 0 667407 1425 123900 61094 282825444+ 12697 CrashPlanSer 11.0 08:51:07 90 3 238 583M 0B 213M 12697 1 sleeping 0[0] 0.28245 0.00000 0 114966261+ 464 24779913+ 5775271+ 3041415928+ 6168 top 4.4 00:00.94 1/1 0 20 8128K 0B 0B 6168 68703 running *0[1] 0.00000 0.00000 0 5949+ 113 573707+ 286818+ 11563+ 23794 firefox 4.2 12:21:16 82 3 1365 1829M 35M 951M 23794 1 sleeping *0[22519] 0.00000 0.00000 501 280058431 5464980 112888849+ 54273231+ 479234532+ 47710 Terminal 4.1 05:44.10 13 8 313 72M+ 0B 69M- 47710 1 sleeping *0[3292+] 0.00000 0.01239 501 3497171+ 16239 1769361+ 236505+ 2144660+ 5288 sysmond 2.5 00:05.83 3 3 32 4028K 0B 300K 5288 1 sleeping 0[8] 1.82564 0.00000 0 9323+ 142 310521+ 154147+ 515268+ 6084 Activity Mon 2.1 00:05.86 7 5 240 51M 25M 0B 6084 1 sleeping *0[25] 0.00000 1.80261 501 64122+ 611 85454+ 3668+ 266729+ 19037 com.docker.h 1.8 03:46:17 18 1 38 17M 0B 544M 19030 19030 sleeping *0[1] 0.00000 0.00000 501 9338322 248 713 70 502275565
this morning was happened the same thing to me it's necessary to update virus database of Eset manually pushing "Update now" and the CPU usage slow down
-
Hi dragon how it blocks google drive? It won't charge the page or it doesn't allow to upload files?My eset works great with Google Drive; try updating eset itself and also eset virus database. If it don't work Maybe try changing the standard port from 80 to 443
Virus Research
in Malware Finding and Cleaning
Posted
send us the log of your eset; maybe you can only add this software to the exceptions both on real time protection and on on-demand scan and on the other protection options