Nightowl
-
Posts
1,857 -
Joined
-
Days Won
17
Kudos
-
Nightowl gave kudos to techylordz in Activating issue for Linux
Oh... I didn't realize that. So I guess the best chance of solving this is to contact the seller. That can be a pain in the behind. I hope they respond and fix the issue.
-
Nightowl gave kudos to schuetzdentalCB in How about a NEW system tray icon for ESET? Like comic theme.
WTF
-
Nightowl gave kudos to Aryeh Goretsky in Friends visit and want my wifi
Hello,
ESET is not in the wireless networking business, but using a guest wireless network without access to your own internal network of machines is a good start. Keeping the router up-to-date with the latest firmware from the manufacturer is important, too. If they are no longer providing updates, you can look to see if firmware from a third-party is available, such as DD-WRT, or replace the router with a new, supported device. If you are using ESET Internet Security or ESET Smart Security Premium, you can use the Connected Home Monitor feature to see what is attached to your internal network.
For scanning other people's computers, you may want to consider using a USB flash drive with ESET SysRescue Live installed to it.
Regards,
Aryeh Goretsky
-
Nightowl received kudos from karlisi in uTorrent is flagged as malicious by several antivirus engines currently
It's better to move to one of these clients , Deluge or qBittorrent
-
Nightowl gave kudos to PassingBy in The PC Security Channel [TPSC] vs Eset 2020
Not too long ago we were here, in another thread, discussing about the previous test from this very same guy who gave ESET appalling scores with a major war of words ongoing on this place for weeks. That was when i joined the ESET family and this forum. Because while everyone was fighting based on the opinions of this guy, what i did was to download ESET, then set it up with maximum settings, including the HIPS rules which i added manually from an ESET guide and, that is my understanding, later on were added by ESET as standard in their product.
The result was me leaving another product after over 15 years of non stop usage (they removed the spam protection to an extent) and buying a 3 years subscription for ESET with a special offer in my country of residence.
I never had issues with the previous product. I had never issues with the current one, with only minor complaints related to small details. It might be to soon to be too positive. I don't know. However the bottom line is: Try things by yourself. Reviews are entertaining, they can be a rough guide to what you are looking for. But there is no substitute for your experience.
ESET is working fine for me. I only consider their notifications an utter pain in the neck. I had to mute them. And some of their threats are not explained in the proper way. I am happy that i can change whatever i want and that i can set rules by myself if needed. It surely is not a suite for the lazy. But it is a good product, if one takes some time to learn how to use it and is not scared of asking questions.
The support in the forum is overall good as well. The previous product had an appalling support.
And did try many other products together with ESET. I threw all of them away. Some slowed down my PC, others had too much bloatware in them, some were oversimplified and didn't allow me to have a good control (no notifications at all in those...as opposed to ESET, with worse nightmares as you don't know what's going on underneath).
Try things yourself! We'll be here in a few months with this guy giving ESET a lower score and more arguments arising, most probably.
-
-
Nightowl received kudos from SeriousHoax in Files encrypted by ransomware
It's now detected by ESET : Win32/Filecoder.NZG
In my opinion what needs to be improved is the machine learning and HIPS , but I am not expert like those who program at ESET for sure , also as SeriousHoax said , Application Manager and Reputation(rep is already there) , to be combined with everything , so the AI could try to decide if this app is trying to do malicious things or it's not.
But I could be mistaken , I don't know , but also as ITman said , nothing is 100% safe.
-
Nightowl gave kudos to itman in disable EIS and have windows defender running instead
Seems to be effective. I haven't seen a published bypass of it to date.
-
Nightowl received kudos from Peter Randziak in "This file has been sent to analyze"
Yes I understand but sometimes you have cases where the files that you do are private to the company that you work with and it's hard to upload them for analyzing , but I understand it's bad for the AI system , same to what happened to Kaspersky and the American gov went crazy about it and blamed them for stealing data , while their AV saw that some files are suspicious and sent it to their AI.
I know it's so important to get files sent by users , because that will make the system stronger and more accurate and faster.
-
Nightowl gave kudos to Peter Randziak in ESET Endpoint Antivirus for Linux 7 BETA signup
Dear Linux community,
We’ve been working on the new generation of our solution for Linux desktops for quite a while.
The hard work of our development & QA teams, using technologies developed for the ESET File Security for Linux 7, were materialized into the first BETA version of our Endpoint product, which we would like to share with you.
To mention just few of the top new features:
Completely new distributed architecture, natively 64-bit, with better performance, security and stability New technology for On-access scanning by means of ESET-in-house-developed lightweight kernel module Optimized for multi-core performance Compatible with latest ESET Security Management Center 7.1
If you are interested in getting a chance of a hands-on experience with it and see the full list of improvements, just leave a comment here or send me ( @Peter Randziak) and @TomasP a private message.
We are looking forward to your participation.
-
Nightowl gave kudos to Marcos in A message from malware writers to ESET found in Emotet
They wouldn't bother sending messages to lame analysts who would not be able to find the message at all Obviously it's because our detection and protection is hard or impossible to bypass.
-
-
Nightowl received kudos from kanok ramsint in Lagging and making certain portions of PC unusable...
Switch to Deluge/Qbittorrent , they don't include ads or toolbars, both are open-source.
-
Nightowl received kudos from The Rectifier in Virusradar signature database unclickable
I understand , I ask because I used to look at them from time to time
-
Nightowl gave kudos to itman in Mouse Clicker EXE undetected
Here's an analysis of what appears to be a later version: https://any.run/report/c77cf8ebd52d044362c7f5d1a8e3fc444488371985a8c0f2902420b93bc44001/2bdc9ed2-5ebe-42a9-beb4-f35fa778bd37#registry
In this case, the determination was suspicious.
-
Nightowl received kudos from ProTruckDriver in What License Do I Buy?
Check here : https://www.eset.com/us/home/multi-device-security/
-
Nightowl gave kudos to itman in CamScanner detected as trojan downloader (ESET Mobile)
Kaspersky just published an analysis on CamScanner:
https://securelist.com/dropper-in-google-play/92496/
-
Nightowl gave kudos to Marcos in ransomware attack
Just came across a case when a user was hit by Filecoder.Phobos and asked how come they got infected with ESET installed. After analyzing logs, we found out that:
- the detection for the ransomware was added at least 2 months before the incident
- password protection of ESET's settings was not enabled
- detection of potentially unsafe applications was disabled
We also found out that:
1, A brute-force RDP attack was performed:
- Administrator had 22 377 failed login attempts
- ADMINISTRATOR had 5 438 failed login attempts
- ADMINISTRADOR had 1 102 failed login attempts
- ADMIN had 710 failed login attempts
2, There was a suspicious RDP connection from a foreign country
3, A local user GhostUser has been created recently
4, A legitimate tool that can be misused to kill security software has been installed recently (detected as pot. unsafe application)
5, Event logs have been recently cleared.
This is a proof that just having a security software installed is not enough; firstly RDP must be secured. Secondly, all critical operating system updates must be installed. Fourthly, ESET must be protected with a password and detection of potentially unsafe applications enabled to prevent protection from being tampered by unauthorized persons.
-
Nightowl gave kudos to notimportant in ransomware attack
This is not an excuse. I see this all the time in the customers logs when brute force attacks are performed against RDP.
-
Nightowl gave kudos to Marcos in a variant of EFI.CompuTrace.A
For more information, please refer to:
https://support.eset.com/kb6567/
https://www.welivesecurity.com/2018/09/27/lojax-first-uefi-rootkit-found-wild-courtesy-sednit-group/
https://www.welivesecurity.com/wp-content/uploads/2018/09/ESET-LoJax.pdf
-
-
Nightowl gave kudos to Farah in ESMC Replication
I believe that it's possible through a windows failover cluster, you are counting on windows though in such cases and not on an Eset feature
https://help.eset.com/esmc_install/70/en-US/installation_cluster_windows.html
-
Nightowl gave kudos to itman in Am I having too many Edge connections?
I never attempted to block Cortana using Eset HIPS. I use O&O ShutUp 10 to "harness" its activities.
-
-
Nightowl gave kudos to peteyt in Another AV to complement ESET
Cheers for the clarification. Never use it so wasn't sure.