Crazy worker in eset

Discussion in 'ESET NOD32 Antivirus/Smart Security Beta' started by dorgane, Jun 24, 2012.

Thread Status:
Not open for further replies.
  1. dorgane

    dorgane Registered Member

    Joined:
    Oct 17, 2007
    Posts:
    362
    hi,

    Who explain me why eset 6 detect in live grid good a rogue?
    are there men behind live grid? how many money they earn for do that ? :eek:

    because, i want work for you too :D



    crazy.JPG

    2.JPG




    EDIT : hum, is now detect only in demand sacn and switch yellow in live grid : Operating memory » C:\DOCUME~1\NoNo\LOCALS~1\APPLIC~1\astvbnu.exe - a variant of Win32/Adware.SecurityShield.D application - cleaned by deleting - quarantined

    humm is very strange in eset...
     
    Last edited: Jun 24, 2012
  2. toxinon12345

    toxinon12345 Registered Member

    Joined:
    Sep 8, 2010
    Posts:
    1,200
    Location:
    Managua, Nicaragua
    It was digitally signed?
    Maybe the file was whitelisted by error.
     
  3. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    ESET Live Grid provides information about the reputation of a program, e.g., how long it has been seen by ESET, number of installs of it around the world and so forth. This data is primarily meant to be used by people to give them an additional piece of information they can use when deciding how much to trust a particular program: A program with a low number of users and recent discovery can have an elevated risk level simply because of its scarcity in the Live Grid data set.

    This is not the same as the NOD32 engine, which is meant to tell you if a program is a threat, potentially unsafe or unwanted and so forth.

    While they two technologies work hand-in-hand together and do share some analysis techniques which are similar on the back-end, Live Grid is a complementary technology meant to help supplement the threat protection provided by other modules in ESET's software.

    Regards,

    Aryeh Goretsky
     
  4. encus

    encus Registered Member

    Joined:
    Nov 2, 2009
    Posts:
    535
    Can this Live Grid be disabled?
    Would it be risky or dangerous to disable it?

    Thank you.
     
  5. dorgane

    dorgane Registered Member

    Joined:
    Oct 17, 2007
    Posts:
    362
    Okay so, if i use virus on many computers is always green? o_O
    Live grid is not real cloud.... When real cloud ? eset v7 ? v8? o_O
    As kaspersky : https://support.kaspersky.com/fr/images/images_fr/6353b.jpg

    Thank you
     
  6. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    Please provide the SHA1/MD5 of malware with a green status in ESET Live Grid.
     
  7. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    You can disable Live Grid by opening the ESET user interface, pressing F5, selecting Tools|ESET Live Grid in the left navigation pane and unchecking the "Participate in ESET Live Grid (recommended)" option.

    I would suggest taking a look at the online help (press F1 from within the program while looking at the above) for a better understanding of what enabling or disabling ESET Live Grid does on your system.

    Regards,

    Aryeh Goretsky


     
  8. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
  9. encus

    encus Registered Member

    Joined:
    Nov 2, 2009
    Posts:
    535
  10. dorgane

    dorgane Registered Member

    Joined:
    Oct 17, 2007
    Posts:
    362
    SHA256:7ed1ef46b2fabce42339f1b9f8b8d004bdc02a56e9ee3474614be9eb338fbc1d
    SHA1: eb894a0dd5f9fb92ec0f24eae3044b4cc79abc99
    MD5: 0ab97eec4468fbad6869df3b25771534
    File size: 966.9 KB ( 990056 bytes )
    File name: autoupdater.exe
    File type: Win32 EXE
    Tags: signed
    Detection ratio: 4 / 42
    Analysis date: 2012-06-26 15:04:07 UTC ( 1 semaine ago )

    autoupdater.JPG

    lock.JPG


    -------

    and :

    SHA256: 80c6dba773d91a0b5eba5fa62ec52880c15c027badc0116367fd298fad62923a
    SHA1: fd8b9d2128c100399b183a734db7fd76f2f485f3
    MD5: c57fb378da5ddd162f9a2443c7f951f0
    File size: 1.0 MB ( 1084264 bytes )
    File name: UpdatePCTuto.exe
    File type: Win32 EXE
    Tags: signed
    Detection ratio: 0 / 42
    Analysis date: 2012-06-12 10:06:13 UTC ( 3 semaines ago )

    pctuto.JPG
     
  11. toxinon12345

    toxinon12345 Registered Member

    Joined:
    Sep 8, 2010
    Posts:
    1,200
    Location:
    Managua, Nicaragua
    yeah, it seems signed applications are automatically whitelisted by LiveGrid reputation system.
     
  12. toxinon12345

    toxinon12345 Registered Member

    Joined:
    Sep 8, 2010
    Posts:
    1,200
    Location:
    Managua, Nicaragua
    Have you tried scan that file with the core scanning engine only.

    I suppose the cache optimizations can be disabled by unchecking "ESET LiveGrid" and "Smart optimization" in the ThreatSense engine parameters setup.
     
    Last edited: Jul 3, 2012
  13. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,948
    Location:
    U.S.A.
    Removed Off Topic Posts. Let's concentrate on helping the Member and not bashing each other. Thank you.
     
Thread Status:
Not open for further replies.