-
Posts
35,860 -
Joined
-
Last visited
-
Days Won
1,428
Everything posted by Marcos
-
HTML/ScrInject.B on our Client website
Marcos replied to YesIT's topic in Malware Finding and Cleaning
You can use any ESET security product since each contains the on-demand scanner or the command-line scanner ecls.exe or odscan on Linux. -
Windows temp profile: user profile service failed the sign-in
Marcos replied to IT-user's topic in ESET Endpoint Products
Please raise a support ticket since it will need to be investigated by developers. -
Only by temporarily uninstalling ESET you can confirm or deny a correlation between the issue and ESET. You can export the configuration and import it after re-installation if you use some non-default settings.
-
Pc infected with cyberfear@decryptor, SEXAXGLSY files
Marcos replied to marc1200's topic in Malware Finding and Cleaning
Unfortunately ESET was not installed when logs were collected. Please install ESET, run a full disk scan and then collect fresh logs with ELC. Also provide logs collected with the tool that I'll supply you with via a private message. -
Pc infected with cyberfear@decryptor, SEXAXGLSY files
Marcos replied to marc1200's topic in Malware Finding and Cleaning
Please provide: 1, Logs collected with ESET Log Collector 2, A couple of encrypted files (ideally Office documents) 3, The ransomware note with payment instruction. -
Probably you have a license from ESET Canada. Please provide your public license ID in the form of XXX-XXX-XXX to identify your license.
-
Please always create a support ticket for things when a replication in needed. It is very difficult for us moderators to replicate issues during holidays in our free time which requires quite a lot of time. It's different to answering relatively simple questions which takes a few minutes at most. Anyways, I'll try to reproduce the issue with firewall rules migration from v16.1 to v17 in the following days but I don't expect it to be a general issue, otherwise users who have upgraded to v17 would have reported it as well. Therefore I kindly ask you to raise a support ticket for proper investigation of the issue.
-
Module update failed and unable to activate
Marcos replied to Microbe's topic in ESET Endpoint Products
Please carry on as follows: Enable advanced logging under Help and support -> Technical support Reproduce the issue Stop logging Collect logs with ESET Log Collector and upload the generated archive here (only the ESET staff can access attachments). If the archive is too big to upload here, upload it to a file sharing service and drop me a private message with a download link. -
Submission of Malware Samples for Analysis
Marcos replied to Hardq's topic in Malware Finding and Cleaning
I've been trying to download the file but the download failed after an about an hour. The archive was too big, probably several GB in size. What makes you think it was malware? -
Trojan Detection Blocks Access to Excel.
Marcos replied to Felipe osorio's topic in Malware Finding and Cleaning
I assume the file would still contain vbaproject.bin inside but this was missing in the above xlsx file. I'll pass it to our researchers for a check though. -
How is the issue related to ESET? Are you able to install Adobe after ESET has been uninstalled?
-
Trojan Detection Blocks Access to Excel.
Marcos replied to Felipe osorio's topic in Malware Finding and Cleaning
The Excel file doesn't seem to contain a macro. Couldn't it be that it was detected and removed by ESET? -
What plugins do you mean? Are they ESET related? If ESET is uninstalled, all its extensions are removed from the system.
-
Trojan Detection Blocks Access to Excel.
Marcos replied to Felipe osorio's topic in Malware Finding and Cleaning
I've analyzed the script and at the final stage it downloads malware detected by ESET as Win32/Rescoms.B trojan. Please provide the Excel file with macro in an archive encrypted with the password "infected" to make sure that the macro is detected prior to execution. -
Trojan Detection Blocks Access to Excel.
Marcos replied to Felipe osorio's topic in Malware Finding and Cleaning
-
Do you have a supported version of agent installed? https://support-eol.eset.com/en/policy_business/product_tables.html Version Original Release Date Latest Build Latest Build Release Date Current Status Full Support Limited Support 11.0 December 13, 2023 11.0.503.0 December 13, 2023 Full Support Until next feature update (minimum until June 30, 2024) Until June 30, 2026 10.1 June 27, 2023 10.1.1292.0 August 22, 2023 Limited Support Ended (December 13, 2023) Until December 31, 2025 10.0 November 10, 2022 10.0.1126.0 November 10, 2022 Limited Support Ended (June 27, 2023) Until June 30, 2025 9.1 July 14, 2022 9.1.1298.0 July 27, 2022 Limited Support Ended (November 10, 2022) Until November 30, 2024 9.0 October 28, 2021 9.0.1141.0 October 28, 2021 Limited Support Ended (July 14, 2022) Until July 14, 2024 8.1 June 24, 2021 8.1.1223.0 October 7, 2021 End of Life Ended (October 28, 2021) Ended (October 31, 2023) 8.0 December 9, 2020 8.0.1238.0 February 11, 2021 End of Life Ended (June 23, 2021) Ended (June 30, 2023)
-
Limited Direct Cloud Connectivity
Marcos replied to AhmedDeban's topic in ESET Products for Windows Servers
For some reason I could not find epfwlog.dat log in the archive although the ELC log says otherwise. On Dec 14 there was a problem with DNS between 05:46:03 and 05:46:12. As to what was going on, we can't tell. The pcap log could at least tell if there was problem with network communication in general in this time frame. -
Please carry on as follows: Enable advanced logging under Help and support -> Technical support Reproduce the issue Stop logging Collect logs with ESET Log Collector and upload the generated archive here (only the ESET staff can access attachments). If the archive is too big to upload here, upload it to a file sharing service and drop me a private message with a download link.