F
ForgottenSeer 123960
Need to set a record straight here. Bazang actually works in the industry, unlike a lot of the arm chair users here, and is often at work.
Last edited by a moderator:
Thoughts on HitManPro
- Thread starter cruelsister
- Start date
It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Why do you keep criticizing other forum members? Not everyone here works in the industry nor is this a requirement for forum membership, if that were the case there would be less then 20 members here and the forum wouldn't last another week. Just remember there is a difference from being in an industry and actually being good at it. ( Not a shot at Bazang).
And you know this for a fact how? It's the internet, anybody is could be anybody but is usually no body with just personal opinions. Anyway as predicted he got bored and left.
F
ForgottenSeer 123960
It's the internet, people have been trolling and pretending to be experts since the dawn of packets being sent even back in the BBS days.
It doesn't matter what he is or isn't, he came he saw he left.
Yeah I think it was Untangle UTM I used to run it at home.
Yeah that's it Untangle, Sophos also had another UTM product I believe.
F
ForgottenSeer 123960
I prefer a manual, heuristics-based approach to diagnostics over reliance on automated scanners. Using the Sysinternals suite (Process Explorer, Autoruns, and TCPView) integrated with VirusTotal, I can identify active infections by analyzing process behaviors, persistence mechanisms, and network traffic.
While automated scanners are useful, they are prone to false positives and negatives. I believe effective security requires the ability to manually verify findings and inspect common malware drop locations in the file system.
While automated scanners are useful, they are prone to false positives and negatives. I believe effective security requires the ability to manually verify findings and inspect common malware drop locations in the file system.
@cruelsister
Have you tried Sirius LLM?
If not, you might want to consider this software, which is very fast.
Have you tried Sirius LLM?
If not, you might want to consider this software, which is very fast.
cruelsister
Level 43
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Forum Veteran
I didn't really care for Sirius. But have been flirting with CyberLock 9.0 beta and have been very impressed. After a brief hour with it what came to mind was A.C. Clarke's statement that "Any sufficiently advanced technology is indistinguishable from magic".
I had a single Chrome.vbs file analyzed that had also received an FP from NPE:
App Review - Thoughts on HitManPro
Instead, it is a Chrome.VBS file that I use to overcome the Chromium Command Line Switches limit.
I understand the logic behind the detection.
So I wonder if Sirus LLM (I also used the beta) is roughly on the same level as NPE.
The problem with Sysinternals is you rely on the skill of the user to distinguish malicious files from safe. With AV/AM this is done for me without endless hours researching.
+ most diagnostic suites and tools revert back to VirusTotal to give a safety score so your back at scanners then.
I actually find manual scanning tools for IOCs etc very boring, not my thing. Better use of my time than searching through endless registry entries.
I do however like reading research and reports, but doing the manual work nah not for me.
If I remember correctly there was an bootable ISO that contained them all and other tools among them. Does this still exist or am I going senile? Also just because it exists it doesn't mean that I am not senile.That is not a good idea, AV might prevent further infection, but between uninstallation and installation of another AV, malware can spread and even block installation of AV.
In case a serious infection or when looking for an alternative scan, it is better to use a bootable AV then.
P.S.: This is why I like Dr.WEB CureIt! It uses a randomized unsigned exe, so it can not be easily blocked.10 Best Free Bootable Antivirus Rescue Disks for Windows - PCInsider
Bootable Antivirus Rescue Disk A Bootable Antivirus Rescue Disk or USB Rescue Disk is the most efficient way of detecting and deleting malware from an infected computer. A Rescue Disk scans Windows files and User files outside of Windows. So, all those malware that start along with Windows, and...www.thepcinsider.com
I searched this thread and it did not find MS Defender Offline Scan, which "lets you boot and run a scan from a trusted environment. The scan runs from outside the normal Windows kernel so it can target malware that attempts to bypass the Windows shell, such as viruses and rootkits that infect or overwrite the master boot record (MBR)." is it as effective as linux rescue CD, I dunno, but I do offline scan about once a month...
Then Sirus lives by it's name; a domesticated trusted companion that will watch your domicile and alert you to dangers.
I thought Emsisoft is a great free on-demand scanner. Is it not available anymore?
Like EOS, not good against threats in memory especially fileless ones. It is still available
You may also like...
-
Windows Active Directory Vulnerability Allows Attackers to Execute Malicious Code- Started by Brownie2019
- Replies: 1
-
McAfee Total Protection 5-Device: 1-Year Subscription
- Started by Brownie2019
- Replies: 2
-
-
FCritical React Native Vulnerability Exploited in the Wild
- Started by ForgottenSeer 116559
- Replies: 2
-
Firefox Vulnerability Allows Tor User Fingerprinting
- Started by Brownie2019
- Replies: 2