mlyns_d 0 Posted December 21, 2013 Share Posted December 21, 2013 (edited) Eset cannot detect tihs Virus. Kaspersky,AVG detects, Eset not Support sleeps and does nothing I have 150 computers with ESET's virus at all Edited December 21, 2013 by Marcos Malware removed from post Link to comment Share on other sites More sharing options...
Administrators Marcos 5,397 Posted December 21, 2013 Administrators Share Posted December 21, 2013 Detection for this Sality variant will be added in update 9202. However, cleaning these viruses is not a trivial task and sometimes infected files cannot be restored to a functional state if a virus has corrupted them or infected them improperly. Next time, please follow these instructions to submit files to ESET. Link to comment Share on other sites More sharing options...
mlyns_d 0 Posted December 21, 2013 Author Share Posted December 21, 2013 Thanks for instructions to submit files to ESET. If I knew it yesterday i would gain 12 hours. I thougth that sendig from ESET is enough. I was stupid. It Is not a trival task to install 150 operating systems and aplications We will have a busy Christmas.. It will be better if we can remove the infection without deleting the file Dariusz Mlynski Link to comment Share on other sites More sharing options...
Arakasi 549 Posted December 21, 2013 Share Posted December 21, 2013 (edited) mlyns If you dont have wds, sccm, or similar deployment and an image ready to go, 150 computers is definitely trivial. If you do, its not difficult at all. Just have to deal with employees screaming when they get back in to office. Haha However, if the variant gets added in 9202 and you update ESET on all computers. You should be able to run scan with all infected computers and it should clean, provided the files were not corrupted like Marcos stated. Maybe Marcos can give you a date and time of 9202 release ? I would assume Tonight or tomorrow. This might save you from reinstall of OS Edited December 21, 2013 by Arakasi Link to comment Share on other sites More sharing options...
mlyns_d 0 Posted December 22, 2013 Author Share Posted December 22, 2013 (edited) Another not detected by ESET virusDatabase version 9023 Password: infected Mayby Win32/TrasgBytes.G And what now - again 150 computers to check? Edited December 22, 2013 by Marcos Malware removed from post Link to comment Share on other sites More sharing options...
mlyns_d 0 Posted December 22, 2013 Author Share Posted December 22, 2013 Eset not Sleep "Dear Dariusz Mlynski,Thank you for your submission.The detection for this threat will be included in our next signature update.reader_sl.exe - Win32/Sality.NAQ virusRegards,ESET Malware Response Team" Link to comment Share on other sites More sharing options...
Arakasi 549 Posted December 22, 2013 Share Posted December 22, 2013 (edited) Yeah the threat center has revolving shifts to accommodate for the entire planet / 180 other countries they support / all time zones. Edited December 22, 2013 by Arakasi Link to comment Share on other sites More sharing options...
mlyns_d 0 Posted December 23, 2013 Author Share Posted December 23, 2013 (edited) The third day. ESET still can not detect the infection in all files types. Finds only in some infected files. Edit 24.12.2013 This is a virus Win32/Sality. I have already identified six types. Five of them NOD database version 9210 detects. The question is how many types of viruses which I have I dont now. I still identify new and sending samples to ESET Edited December 24, 2013 by mlyns_d Link to comment Share on other sites More sharing options...
Arakasi 549 Posted December 24, 2013 Share Posted December 24, 2013 Thank you for your samples Link to comment Share on other sites More sharing options...
mlyns_d 0 Posted December 27, 2013 Author Share Posted December 27, 2013 Today I sent another sample: (. Win32/Sality will be number one on the list of viruses: (. Already is good. Problem with the virus is only on 2 computers. Link to comment Share on other sites More sharing options...
nod8 1 Posted January 18, 2014 Share Posted January 18, 2014 This is my worry to, so I am running Eset alongside Webroot SecureAnywhere AV. Kaspersky is definitely better than Eset in detection. Link to comment Share on other sites More sharing options...
Administrators Marcos 5,397 Posted January 20, 2014 Administrators Share Posted January 20, 2014 This is my worry to, so I am running Eset alongside Webroot SecureAnywhere AV. Kaspersky is definitely better than Eset in detection. It depends on what samples you make a test with. We come across a lot of zero-day malware where ESET is often the only vendor to detect them. Link to comment Share on other sites More sharing options...
mattspchelp 4 Posted February 18, 2014 Share Posted February 18, 2014 I would look into how the infection got on the system in the first place, also connecting 150 machines up to a single Remote Admin server will help you to scan and clean the machines in one go, Link to comment Share on other sites More sharing options...
Recommended Posts