Jump to content

geoff

Administrators
  • Content Count

    118
  • Joined

  • Last visited

Posts posted by geoff


  1. Hi,

    FYI, the Trojan.Agent/Gen-Nullo[Micro] definitions (and many of the other "Nullo" threat detections) find files that have already been disabled and rendered non-executable by some other security software.

    If SAS detected such a file on your system, it was already cleaned or disabled by something else.

    Geoff


  2. Hi Robin,

    Thank you for submitting the sample! We have analyzed it and it has been incorporated into our database as of this afternoon!

    Thanks,

    Geoff

    Uploaded just now, Geoff: many thanks.

    It would be really useful to have a right-click scan to Windows Explorer, and also to be able to configure the program to automatically scan removeable drives.


  3. Hi Robin,

    Please feel free to use our SUPERSampleSubmit tool to send us the fake DHL delivery attachment -- and, for that matter, any other suspicious files you come across!

    Here's a link to SUPERSampleSubmit:

    https://www.superantispyware.com/downloads/SUPERSampleSubmit.exe

    All you need to do is download and run it. You can drag the suspicious files into the product and it'll send them automatically.

    The right-click context menu for scanning is not available at the root drive level in Explorer. However, you can certainly select the USB drive in the initial scanning screen before proceeding.

    Thanks,

    Geoff

    Hello, I'm trying out SAS to find a program which has a good balance of detection and resources hog.

    I received an email with a suspicious attachment (I'll attach it here if you want, but because I'm certain it's a trojan I didn't want to post it without permission.) It's supposedly from DHL, and purports to be a form to arrange redelivery of a parcel, but I just know it's a fake because:

    - The email has too many exclamation marks

    - The attachment is a zip file (why not a PDF or a Word doc?)

    - The zip contains an executable called DHL_Print_Label.exe but it has a Word icon

    SAS doesn't complain when I stick the thing into a folder and scan it. Betcha it's a nasty, though. And yes, I'm using the latest version of the program and the latest updates. Want me to upload it so you can have a shufti?

    Can I ask something unrelated? Will SAS Pro automatically scan removable USB drives, and a right-click scan option in Windows Explorer?

    Many thanks

    Robin

×
×
  • Create New...