Jump to content

santoso

Members
  • Content Count

    71
  • Joined

  • Last visited


Kudos

  1. Upvote
    santoso gave kudos to Aryeh Goretsky in Are Old Version of Orbit Downloader Free from DDoS Weapon ?   
    Hello,

    I am the author of the Orbital Decay: the dark side of a popular file downloading tool article on ESET's WeLiveSecurity blog.

    Given the nature of the what was reported, I would caution against using any version of the software.

    Regards,

    Aryeh Goretsky
  2. Upvote
    santoso gave kudos to Marcos in How To Know Infected PC   
    You can use nmap, see https://nmap.org/nsedoc/scripts/smb-vuln-ms17-010.html
  3. Upvote
    santoso gave kudos to itman in How To Know Infected PC   
    I would be careful using this tool. Appears results are a bit ambiguous and can be misinterpreted:
    For example:
    Developer's response:
     
  4. Upvote
    santoso received kudos from arusconi in ESET Security Management Center 7 deployment in Proxmox VE   
    Thanks
  5. Upvote
    santoso gave kudos to Nightowl in How To Know Infected PC   
    The worm is replicating itself from one of the computers or shares in the Network , ESET won't be able to remove it from the remote location , it will only be able to protect the computer that it's installed on
    You need to clean the worm from the infected PC/share , first of all you should disconnect it from the network to prevent it from keep trying replicate itself to others, then you try to clean it off and make sure the machine is fine and then you put it back to the network.
  6. Upvote
    santoso gave kudos to itman in How To Know Infected PC   
    A very useful tool in diagnosing suspect auto run entries on a device is SysInternal's Autoruns utility which can be downloaded from here: https://docs.microsoft.com/en-us/sysinternals/downloads/autoruns . It has a number of optional settings including having all entries scanned at Virus Total.
    Note that there are a few FPs in this utility when run on Win 10; namely flagging non-existent Win system processes for which registry entries exist.
×
×
  • Create New...