vuno trojan

stevenz · #1 October 24th, 2008, 09:59 PM

i had a vundo trojan infection.
the only program that found it and completely removed it was malwarebytes antimalware.
It is free too.
come on eset.
$50 a year for each pc,i want a lot better than that.

Kosak · #2 October 25th, 2008, 08:40 AM

Hello, it's repeating situation. No AV will catch "everything", because virus writters have got time advantage etc. Follow this post.

emperordarius · #3 October 25th, 2008, 05:16 PM

Also notice that new Vundo variants appear everyday, and no antivirus can catch all of them. That's why you can run an anti-spyware along with NOD32, so that it can catch was NOD32 may eventually miss. And actually NOD32 isn't very good with spyware.

Marcos · #4 October 26th, 2008, 01:33 AM

Quote:

Originally Posted by emperordarius

And actually NOD32 isn't very good with spyware.

Perhaps you've confused adware with spyware? Still, I think that adware detection is decent. It'd be good to know what exactly you are refering to.

emperordarius · #5 October 26th, 2008, 02:29 AM

Quote:

Originally Posted by Marcos

Perhaps you've confused adware with spyware? Still, I think that adware detection is decent. It'd be good to know what exactly you are refering to.

Generally it's not very good with adware and with vundos.I'm not saying it's bad, just not very good. But it's fine if you run it along with an anti-spyware.

Marcos · #6 October 26th, 2008, 02:48 AM

Quote:

Originally Posted by emperordarius

...and with vundos.I'm not saying it's bad, just not very good.

Hm, strange enough that we receive thousands of Vundo variants via ThreatSense that are detected by us and missed by almost all big players

I admit that Microsoft has better detection, the question is whether it also triggers more false positives. There must always be a decent balance between detection sensitivity and false positives.

emperordarius · #7 October 26th, 2008, 04:12 AM

Quote:

Originally Posted by Marcos

Hm, strange enough that we receive thousands of Vundo variants via ThreatSense that are detected by us and missed by almost all big players

I admit that Microsoft has better detection, the question is whether it also triggers more false positives. There must always be a decent balance between detection sensitivity and false positives.

Well, regarding false positives, NOD32 makes really few

However, about Vundos, I don't doubt that you get that many variants, however to say the truth NOD32 has always had some problems with spyware.(I remember that it was like this since 2.7).this (-http://www.youtube.com/watch?v=wgWU3xebNO4-) is what I mean. Of course that's a very uncommon scenario.

Kosak · #8 October 26th, 2008, 05:10 PM

There is a problem with tester.

You have to run complete scan, the best in safe mode, and then run OS in normal mode.

When real-time scanner will scan files step-by-step and they will be detected, you will see this scenario. When there is a trojandownloader, other infected files will be downloaded. All depends on detection. For that I recommend use firewall, which detects these connections and denies them.

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search