RvW
-
Posts
84 -
Joined
-
Last visited
-
Days Won
1
Posts posted by RvW
-
-
-
One of our clients has two (2) phantom accounts (John and Henk). Anti theft is enabled for the phantomaccount "Henk". Is this even possible? Does he have to keep both or can he delete "John"? If so how?
-
This is yet another scam:
I had reported about this earlier:
Scam: I'm a member of an international hacker group
Headers:
QuoteMail Delivery System <Mailer-Daemon@srv2.anyservers.com>
dinsdag 30 oktober 2018 1:57
***@*******.**
Mail delivery failed: returning message to sender
details.txt; Belangrijk: HACKED (2,21 kB)
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed:
***@*******.**
Domain aravera.net has exceeded the max emails per hour (38/30 (126%)) allowed. Message discarded.Originally in English, but now the message is being translated into Dutch:
QuoteHallo,
Om te beginnen wilde ik je te kennen geven dat ik 6 maanden geleden ***@*******.** heb gehackt.
(Kijk a.u.b. bij "afzender" van deze mail.)
Via deze "leak" heb ik je computer weten te besmetten met een virus (trojan), en heb ik je al deze tijd in de gaten gehouden.
Ook al kies je ervoor je wachtwoord alsnog te veranderen - dit heeft geen invloed.
Het virus zal alle data op en vanaf je computer (caching data/registry) onderscheppen en automatisch opslaan.
Op deze manier heb ik en behoud ik zolang nodig ook toegang tot al je accounts, social network, contacten, emails, browsing geschiedenis, etc. Alle data die bruikbaar is, zowel contacten als gegevens als foto's en video's zijn zorgvuldig opgeslagen.
De interesses die jij koestert, de site's die jij bezoekt, zijn op zijn zachts gezegd interessant te noemen.
Tijdens deze handelingen gedurende tijd, heb ik screenshots via jouw camera gemaakt, die synchroom lopen met wat jij aan het kijken bent.
Ik ga er dan ook vanuit dat je niet deze gegevens en interesses wilt delen met familie, vrienden, kennissen, collega's, of wel?
Indien je deze mening deelt, dan denk ik dat 500 euro een behoorlijk schappelijke prijs is, om deze smerigheid van jou te vernietigen.
Stuur dit bedrag naar mijn bitcoin wallet (hoofdlettergevoelig): 131293jg7vb9jzMD1ChfewgigMwBZwebxZ
Zodra bovenstaand bedrag is ontvangen, garandeer ik dat alle data verwijderd zal worden, ik heb het niet nodig.
Als je niet weet hoe dit moet, zoek op google "how to buy bitcoin".
Indien je niet betaald, zal ik er geen seconde over twijfelen al je gegevens en geschiedenis te delen met al je contacten eerder genoemd.
Vanaf het moment van openen van deze e-mail geef ik je 48 uur de tijd! (2 dagen).
Ik ontvang een automatische notificatie wanneer je deze e-mail hebt geopend.
Sterkte.Again, this is a scam. There is nothing to worry about.
You can ignore this.
-
It was reported from Parental Control in ESET Internet Security. Sorry, @Marcos. Can you move this to the correct forum?
Meanwhile I have found the reason: "Based on the logs, parental control stopped working after the request to resolve a category for IPv6-like URLs. This hasn't been implemented yet. A partial workaround for this will be implemented, so instead of causing parental control to be non-working, such URLs will be treated as uncategorized."
If anyone is experiencing this problem it should have been fixed as of today.
-
From a customer: Today I keep getting a pop up message saying the above and saying I should reenter my licence key. Which I have done. I also logged onto my.eset.com and I choose to send an email for eset verification which I have done, but still getting error message. I see parental control module 1604 was updated on 17/10/2108 so guessing this triggered it?"
-
Thanks for sharing that, @TomFace!
-
If you have received an email with subject "I'm a member of an international hacker group", it's a scam.
Hi,
Has anyone received an email saying:
- your email account was hacked?
- someone has sent an email you from your email account?
- they have your password?
- you were infected by a virus?
- the hacker has access to your messages, social media accounts, and messengers?
- the hacker has full dumps (backups) of you data?
- the hacker has recorded you?
Well, this is not true. It's a scam. See below.
But first, here's a sample of such an email:
QuoteHello!
I'm a member of an international hacker group.
As you could probably have guessed, your account ****@*******.com was hacked, because I sent message you from it.
Now I have access to you accounts!
For example, your password for ****@*******.com is **********
Within a period from July 7, 2018 to September 23, 2018, you were infected by the virus we've created, through an adult website you've visited.
So far, we have access to your messages, social media accounts, and messengers.
Moreover, we've gotten full damps of these data.
We are aware of your little and big secrets...yeah, you do have them. We saw and recorded your doings on porn websites. Your tastes are so weird, you know..
But the key thing is that sometimes we recorded you with your webcam, syncing the recordings with what you watched!
I think you are not interested show this video to your friends, relatives, and your intimate one...
Transfer $700 to our Bitcoin wallet: 13DAd45ARMJW6th1cBuY1FwB9beVSzW77R
If you don't know about Bitcoin please input in Google "buy BTC". It's really easy.
I guarantee that after that, we'll erase all your "data"
A timer will start once you read this message. You have 48 hours to pay the above-mentioned amount.
Your data will be erased once the money are transferred.
If they are not, all your messages and videos recorded will be automatically sent to all your contacts found on your devices at the moment of infection.
You should always think about your security.
We hope this case will teach you to keep secrets.
Take care of yourself.Now let's analyze this for a moment:
- your email account was not hacked; the hacker is just trying to use fear, obligation, and guilt to blackmail you. It's emotional blackmail. Don't let them fool you.
- the hacker has not sent an email from your email account. The only thing he did was change the "from address". Anyone can do that. More info here.
- they may have an old password. If you're still using that password just change it and use a strong password or a password manager. Passwords are available online. It's not that hard. See here or here or just Google it. When large websites get hacked hackers usually put the data online to show off. You can check if your password has been stolen.
- you were not infected by a virus?, the hacker is simply spreading FUD (an acronym for fear, uncertainty and doubt). You can scan your computer if you wish.
- the hacker has no access to your messages, social media accounts, etc. Again FUD.
- the hacker has full dumps (backups) of you data? More FUD.
- the hacker has recorded you? The FUD is getting boring. Some people work on desktops without webcams. So how can you record then?
Once again: if you receive a similar email, it's a scam. It's safe to ignore it.
-
I was just about to add a reply. I have solved it myself. And you were right, @Rami! I restarted the computer and the problem was solved. Thank you.
-
I am getting this error:
QuoteAntimalware Scan Interface integration has failed
Antimalware Scan Interface Is not Integrated In to your system.
This means that Powershell scripts and scripts executed by Windows Script Host will hot be scanned for malicious content.
In Setup > Advanced setup > DETECTION ENGINE > AMSI : AMSI is enabled.
There was another thread here but it does not apply to me (I believe that person had AMSI disabled).
-
-
19 hours ago, SlashRose said:
With the taskhostw.exe everything is fine, it is in the system 32 Folder! This is a file what every Windows0 OS has, so why this Question?
I was under the impression it was related to this file. I might be wrong. Sorry.
-
Can y'all check for a file called taskhostw.exe
If you have it this may be the culprit...
-
Everyday I get a notification saying taskhostw.exe wants to access my webcam. I block it but it comes back every day. Is taskhostw.exe safe or not?
-
On 9/21/2018 at 12:33 PM, MatG-DK said:
If i was ESET i would be concerned about Google Chrome suggest my customers to remove the product that pays my bills..
Still don't understand? Use Firefox and ?
You clearly didn't read the links. Do you at least agree with me on that?
-
A client of mine had a problem but I was able to solve it myself. I will share this in case someone has the same problem.
When his Mac is turned on for several days his ESET Cyber Security disappeared from time to time. He claims he had to download and install it again. However, after digging a little deeper I found the reason why:
drwxr-xr-x 3 root wheel 102 Nov 10 2016 AVG Cleaner.app
drwxr-xr-x@ 5 root admin 170 Apr 29 18:54 IntegoHe had another antivirus (Intego). I asked him to uninstall it. Problem solved. It's never a good idea to have more than one antivirus. This will always cause problems.
-
Perfect solution: use Firefox.
Seriously: Google is asking you to remove your AV and you're gonna do it?
And then you're gonna blame ESET?
Please read Marcos's posts and especially the links. It's. Not. ESET's. Fault.
Still blaming ESET? You didn't read it or you didn't understand it.
-
This is what I presumed, Marcos. But this leaves users in doubt: I open ESET's secure browser and the first thing I see is an unsecured web page. Can this be changed?
-
When I open the secure browser (W7) it goes to a page:
eset.com/BPPRedirector/ESET-Home
But that page is not secured (it says "Not secured" in the address bar)
Is this normal?
-
See here:
Two solutions are proposed:
1. I have added the BDS.exe directory to be excluded from real time file system protection. Seems to be fine now.
2. The only workaround I've found was to define the affinity of the BDS.exe process. You can do this by right clicking the bds.exe process in the Details tab of the Task Manager and Define affinity but it will only define it for the current run. You can define affinity definitively by running BDS through the command line. Here is my shortcut :
C:\Windows\System32\cmd.exe /C START /affinity 1 bds.exe
Do any of these work?
-
Hi, is it possible to block unsecured wi-fi networks?
I don't want my computer to automatically connect to a public unsecured network.
-
If you are getting the “Unknown” status in the ERA license management, or if you are no longer seeing color-coding associated with license over-utilization, unfortunately this is a global issue affecting all licenses in all ERA v6.x instances. It seems it was caused due to changes in the communication protocol done for the upcoming v7. ESET is currently analyzing the situation.
-
Yes, exactly!
So to be clear on the matter you cannot just swipe and then delete it. You have to expand it (click the down arrow) and only then you can delete it.
-
On 5/11/2018 at 2:18 PM, raigorodski said:
Can you point me in the rigth direction how to do it ?
Should i ask suport for my Eset´s local resseler ?
Yes, please contact your local reseller or distributor. They will probably need logs from ESET Log Collector and Procmon logs:
-
1. Please check whether you have input the correct credentials, as the error code signifies you are not.
2. Please make sure you are entering the correct password. Are there any special characters in your password such as "<"?
3. Please make sure there is no trailing space in your email address (e.g. "name@email.com " instead of "name@email.com", so with no space directly behind it).
4. Is your internet connection working properly? The issue is partially connected to slower or interrupted connection causing timeouts. Please try again while you are on wi-fi.
5. If the above steps fail please create a support ticket from within the ESET Mobile Security app. It will send the logs of your phone to ESET so that they can inspect them.
Two phantom accounts
in ESET Internet Security & ESET Smart Security Premium
Posted
Bump...