-
Content Count
22,738 -
Joined
-
Last visited
-
Days Won
955
Everything posted by Marcos
-
It's a web threat and as such may not be detected by ESET at VT. We use various mechanisms to detect and block malware.
-
I confirm there is an obfuscated JS on the website which is what ESET detected and blocked:
-
Eset Agent Error RPC Massage Response Busy
Marcos replied to fajarbagus's topic in Remote Management
How many clients are reporting to the ESET PROTECT server? What is the hw configuration of the server? What db do you use? Is the db on the same server or another one? If the latter, what is the hw configuration of the db server? Have you created a policy that enabled additional reporting, such as all installed applications, websites allowed by Web Control, etc.? -
How to add rule to block traffic in an application?
Marcos replied to Diego Alfaro's topic in ESET Endpoint Products
Unfortunately it's not possible. As for HIPS rules, you can either apply it to all or specific applications with a path. Likewise fFirewall rules currently require the full path to an application. -
Migrate to Azure or Hybrid?
Marcos replied to aadesh130's topic in ESET Products for Windows Servers
How is this query connected with ESET? Are you attempting to install ESET PROTECT or another ESET software on an machine in Azure? -
I assume there are technical reasons / limitations why it's not possible. Please open a support ticket with your local ESET distributor for further investigation.
-
I'm not getting any alert on the said web page. There can be many reasons for that, e.g. a different region, infected machine, compromised router, etc. You can provide ELC logs with also quarantined files collected for verification of the detection.
-
You can ignore it for now since we have managed to find a temporary solution for affected products and systems. Yet we strongly recommend upgrading to the latest version as soon as possible since we won't be able to guarantee that Microsoft will trust the certificate for long enough. The notifications are going to be updated accordingly soon.
-
In case of authentication issues fall-over cannot be automatic. Otherwise in case of an invalid / expired license the client would have to try to connect to each of the servers to make sure it's rejected on all of them which would take time and create an unnecessary burden on servers (a kind of DoS attack) if dozens of thousands clients would do that. This issue is not common at all and was resolved quickly.
-
That's weird since the communication was redirected to other data centers with servers that work alright. Please carry on as follows: - enable advanced Web Control logging in the advanced setup -> tools -> diagnostics on a machine where the issue persists - open an arbitrary website in a browser - disable logging - collect logs with ESET Log Collector and upload the generated archive here.
-
What logs are you referring to? Could you please post a screen shot for clarification?