adnan_el 0 Posted May 20, 2016 Posted May 20, 2016 Okay so I have manually detected that my pc is infected with a BTC miner. My ESET NOD32 is updated to the beta version - hxxp://prntscr.com/b6a959 as you can see the virus database is up to date as well. Now, the malware, with AV scan: hxxp://prntscr.com/b6aa8g Okay, first i thought maybe it's a new kind that wasn't detected yet. But then I uploaded it to VirusTotal and got this output https://www.virustotal.com/en/file/9843735dd57e2b7d828061c9ddbf70e38f4f56efd0aa51bc33057a3bee17248c/analysis/ Their version of ESET detects it, so do a bunch of other AV's. What's going on here?
Administrators Marcos 5,741 Posted May 20, 2016 Administrators Posted May 20, 2016 Coin miners are classified as potentially unsafe applications. This classification covers legitimate tools that can be misused in the wrong hands for malicious purposes. The detection is disabled by default in ESET's products.
SweX 871 Posted May 21, 2016 Posted May 21, 2016 Okay, first i thought maybe it's a new kind that wasn't detected yet. But then I uploaded it to VirusTotal and got this output https://www.virustotal.com/en/file/9843735dd57e2b7d828061c9ddbf70e38f4f56efd0aa51bc33057a3bee17248c/analysis/ Their version of ESET detects it, so do a bunch of other AV's. What's going on here? Coin miners are classified as potentially unsafe applications. This classification covers legitimate tools that can be misused in the wrong hands for malicious purposes. The detection is disabled by default in ESET's products. How do I configure my ESET product to detect or ignore unwanted, unsafe and suspicious applications? hxxp://support.eset.com/kb3204/
Recommended Posts