-
Posts
37,944 -
Joined
-
Last visited
-
Days Won
1,504
Everything posted by Marcos
-
Oh no, a test performed by scanning files without further checking them with analysts if they are really malicious and if should be detected? I'd bet that checking them would reveal that at least 99% of them are not subject to detection. Feel free to drop me a link to an archive with those files so that I can check them out.
-
Policy not being applied
Marcos replied to Amral's topic in ESET PROTECT On-prem (Remote Management)
Version 10.1.219 is home version and is not manageable by ESET Remote Administrator. You should uninstall it and install ESET Endpoint Antivirus v6.5 instead. -
Warp.php - detected by ESET as JS/Kryptik.BBC trojan for more than a year.
-
This forum is not meant to be a means for reporting undetected samples or urls. For instructions how to report them to ESET Research Lab, follow the instructions in the appropriate KB which is also listed in the FAQ section at the right-hand part of this forum. We kindly ask you to stop posting disallowed stuff here as breaking TOS repeatedly may result in account ban. We are not going to block the links just because they offer pharmacy and do not serve any malicious or scam content.
-
Cannot remove Win32/Korplug.BX Trojan
Marcos replied to Formentera's topic in Malware Finding and Cleaning
Collect logs with ELC and "Threat detection" selected from the menu, upload the archive to a safe location and pm me a download link. I assume it''s a fileless threat that is present in the registry only. -
Unfortunately, you didn't mention what product you use. If ESET Endpoint Security or ESET Endpoint Antivirus and it's managed by ESET Remote Administrator, you can create policies via ERA.
-
Try the following: - restart Windows - without launching any application, open the advanced setup, disable SSL/TLS scanning and click OK - re-enable SSL/TLS scanning and click OK - launch Thunderbird Was the problem solved?
-
ESET Flag CCleaner as a potentially unsafe application
Marcos replied to INI's topic in Malware Finding and Cleaning
The detection is correct. A toolbar is known to be bundled with CCleaer. Not sure if it's still possible to obtain an installer that doesn't contain it from somewhere. Anyways, it's detected as a potentially unsafe application. This detection is disabled by default. -
The OP still uses the old ERA v5 and Endpoint v5 that are not managed via ELA and therefore cannot "eat" seats if a computer stops reporting to ERA and is replaced with a new one. In such case, it's enough to delete such computers from ERA as it allows to manages only the number of computers specified in a license file. I'd strongly recommend upgrading to ERA v6 and Endpoint v6 which also provides better protection especially on Windows 10.
-
The golden rule is that only one real-time protection should be active at a time. If you install ESET or another 3rd party antivirus, Windows will disable Defender. That also happens if an antivirus stops updating due to expired license; it has to deactivate its real-time protection and Defender will activate instead. I'd strongly recommend upgrading ESET to the latest v10 which not only addresses issues from older versions but it also bring improved protection, especially on Windows 10 (in particular, AMSI scanner, advanced script scanner and protected service).
-
Remove Endpoint password protected using Script or Command Line
Marcos replied to Mr. ROBOT's topic in ESET Endpoint Products
Try removing ESET in safe mode: http://support.eset.com/kb2289 -
Non expired License has been Deactivated
Marcos replied to sebjepb's topic in ESET Licensing for Business
The license was issued by Microbe Pty Ltd (http://www.microbe.com.au/), hence I'd suggest contacting them.