- Feb 1, 2013
- 969
VB.NET sub to get rid of ESET 8 quietly (even with self-defense enabled)
Today I was browsing the web, and accidentally found this interesting blog post here.
The author says:
"So I recently found a way to completely remove ESET Smart Security 8 by just executing a single command. In my opinion it's very unsafe to use an antivirus that can be uninstalled so easy and without warning. *Note that it does not matter if self-defense is enabled or not*.
...In order to show you how serious it is I made a simple crypter that first uninstalls ESET and then decrypts and runs the backdoor
..
-rat server executable is converted to a string
-this string gets encrypted with AES
-this string goes to the end of the stub file
-stub goes to the target machine and uninstalls eset
-stub reads itself and decrypts the server string
-stub recreates the server executable from the string
-stub runs the rat server now that ESET is uninstalled"
So, the first thing I thought was to share this with you, MT members
Today I was browsing the web, and accidentally found this interesting blog post here.
The author says:
"So I recently found a way to completely remove ESET Smart Security 8 by just executing a single command. In my opinion it's very unsafe to use an antivirus that can be uninstalled so easy and without warning. *Note that it does not matter if self-defense is enabled or not*.
...In order to show you how serious it is I made a simple crypter that first uninstalls ESET and then decrypts and runs the backdoor
..
-rat server executable is converted to a string
-this string gets encrypted with AES
-this string goes to the end of the stub file
-stub goes to the target machine and uninstalls eset
-stub reads itself and decrypts the server string
-stub recreates the server executable from the string
-stub runs the rat server now that ESET is uninstalled"
So, the first thing I thought was to share this with you, MT members