Marcos

Please provide logs collected with ESET Log Collector for a check of your ESET setup.

Please provide: 1, Logs collected with ESET Log Collector 2, A Procmon log from launching Chrome or Edge.

I've re-sent you the license email with a license/activation key that you can enter in Subscriptions in your ESET Mobile Security menu.

You can supply me with the url or the whole file via a private message for perusal.

Updates are usually very small. For instance, the last engine update was 9kB in size for those who update regularly, 12kB for those who missed 1 update, 18kB who missed 3, etc. Other module updates are usually smaller than 1 MB with rare exceptions. If you are experiencing download speed issues, try using a different Internet connection or provider. I've just made a test an downloaded all modules with the total size of 206 MB in about 20s.

The in-depth scan profile scans objects with smart optimization disabled. A complete in-depth scan of disks and other objects may take dozens of hours, depending on how many archives and sfx archives you have on scanned disks. Also the registry and WMI is scanned thoroughly and may take hours to complete. In-depth scan is not suitable for daily scanning of disks.

Since we are unable to answer, please raise a support ticket.

You have received a reply on January 10: This file will be detected as potentially unsafe application Win32/HackTool.Crack.OH. Since there's nothing else to add, we'll draw this topic to a close.

You can purchase ESET from an Indian distributor at https://www.eset.com/in/. If you have moved to a different country. I'd recommend contacting the distributor to find out if you will be able to use the license outside of India.

If you mean Windows Defender, Windows automatically deactivates Defender's real-time protection as soon as a 3rd party AV's real-time protection registers to the Windows Security Center.

Please elaborate more on the issue that you are having.

Please remember that this is a forum which has no abilities to track issues and responses unlike ticketing systems. If you don't get a timely response here, please give us a reminder. For troubleshooting more complex issues that require deeper analysis of dumps or logs, raising a support ticket may be inevitable. I've checked the logs you've provided but it seems that advanced operating system logging was not turned off prior to collecting logs as it's size was 0 bytes: 2023-12-21 08:30 0 EsetPerf.etl Please try to generate the log again.

Please refer to https://sitecheck.sucuri.net/results/https/pgmprzemysl.pl.

The website has been unblocked. In the future please dispute url blocking by following the instructions at https://support.eset.com/en/kb141.

Do you have your Google Play account associated with your email address nxxxxxxxx5@gmail.com ? In such case the product should be able to activate automatically. Otherwise you will need to navigate to Subscriptions in your ESET Mobile Security menu and enter your activation key manually.

The website is indeed infected:

In today’s digitally interconnected world, advanced cyber capabilities have become an exceptionally potent and versatile tool of tradecraft for nation-states and criminals alikeView the full article

You can set cleaning mode to "Always ask the end user" in each or desired scanner's setup. However, we don't recommend changing it from "Remedy detection if safe, ask otherwise" since gui may not always be running or be displayed to ask you.

If you can reproduce the error after a computer restart: Disable Protected service in the HIPS setup Restart the computer and make sure there is no problem with AMSI Create a Procmon boot log After the reboot, stop logging and make sure the problem with AMSI occurs Save the Procmon log unfiltered in the PML format, compress it and supply it for perusal.

Windows disables Defender real-time protection automatically as soon as a 3rd party real-time protection registers to the Windows Security Center.

No detection now either. I recollect that the Sucuri scanner caches results for some time, ie. it's still showing the malicious code even if it has been removed today.

Unfortunately we can't tell. We don't provide website cleaning and monitoring services nor have access to your web server and database. We merely scan the html code downloaded from the Internet.

The website was compromised and contains the JS malware detected by ESET: https://sitecheck.sucuri.net/results/https/infinitumpartners.com.au

Couldn't it be that the AiO was created in the past and the selected package is no longer in the repository? What if you create a new installer and select an existing package from the repository?

Currently there's basically very little difference between automatic and smart mode. This may change in the future, however. If you are ok with being prompted for an action upon detection of certain suspicious operations, choose Smart mode. Otherwise leave automatic mode selected.