graycat 0 Posted April 10, 2023 Share Posted April 10, 2023 (edited) This is a scan from an Acer Nitro 5 17" Laptop with aggressive setting in Eset. This laptop does not mention anything about having Computrace.. so is it strange that Eset would detect it ? There is no anti-theft or anything similar in the Bios settings. Also why is ESET Unable to read some archives and says they're damaged? the BCD also cannot be scanned. I have two of these laptops, and both get similar scan results.. one of them reports the errors twice, see the attached screenshot... the other reports them once. Same detections. Edited April 10, 2023 by graycat Link to comment Share on other sites More sharing options...
el el amiril 0 Posted April 11, 2023 Share Posted April 11, 2023 BCD log is safe i have come across with that but that uefi detection is concerning did you check your pc for secure boot your pc most likely have a backdoor access see this link https://threatpost.com/millions-of-pcs-affected-by-mysterious-computrace-backdoor-2/107700/ The software is extremely flexible. It’s a tiny piece of code which is a part of the BIOS. As far as it is a piece of the BIOS, it is not very easy to update the software as often. So they made it very extensible. It can do nearly anything. It can run every type of code. You can do to the system whatever you want. Considering that the software is running on these local system privileges, you have full access to the machine. You can wipe the machine, you can monitor it, you can look through the webcam, you can actually copy any files, you can start new processes. You can do absolutely anything i suggest doing a reflash of the bios Link to comment Share on other sites More sharing options...
el el amiril 0 Posted April 11, 2023 Share Posted April 11, 2023 most av whitelisted it i think it comes pre installed with the manufacturer that might have been compromised Link to comment Share on other sites More sharing options...
el el amiril 0 Posted April 11, 2023 Share Posted April 11, 2023 check this https://www.reddit.com/r/thinkpad/comments/sf8734/is_there_any_way_to_remove_activated_computrace/ Link to comment Share on other sites More sharing options...
el el amiril 0 Posted April 11, 2023 Share Posted April 11, 2023 also this https://support.eset.com/en/kb6567-you-receive-an-eset-uefi-detection Link to comment Share on other sites More sharing options...
itman 1,789 Posted April 11, 2023 Share Posted April 11, 2023 (edited) 20 hours ago, graycat said: This is a scan from an Acer Nitro 5 17" Laptop with aggressive setting in Eset. It is odd that Computrace is installed since the Nitro model series was developed for gaming activities. Computrace is usually installed on laptops/notebooks designed to support commercial environments. -EDIT- I suggest you contact Acer tech support as to if CompuTrace was installed on your device at its manufacturing facility. Edited April 11, 2023 by itman el el amiril 1 Link to comment Share on other sites More sharing options...
itman 1,789 Posted April 11, 2023 Share Posted April 11, 2023 The fact that Eset detects damaged archives in the UEFI is enough reason to download the latest BIOS version and reflash/update the BIOS/UEFI. el el amiril 1 Link to comment Share on other sites More sharing options...
el el amiril 0 Posted April 11, 2023 Share Posted April 11, 2023 5 minutes ago, itman said: It is odd that Computrace is installed since the Nitro model series was developed for gaming activities. Computrace is usually installed on laptops/notebooks designed to support commercial environments. This type of malware are persistent sir? Link to comment Share on other sites More sharing options...
itman 1,789 Posted April 11, 2023 Share Posted April 11, 2023 Just now, el el amiril said: This type of malware are persistent sir? Computrace is not malware. Rather view it as firmware based software that is vulnerable to being hacked. el el amiril 1 Link to comment Share on other sites More sharing options...
Recommended Posts