-
Posts
36,236 -
Joined
-
Last visited
-
Days Won
1,441
Everything posted by Marcos
-
Need help to enable Web-access/Anti-Phishing protection
Marcos replied to Ryan Clark's topic in ESET NOD32 Antivirus
Hi Tom, Do you mean the link How do I use ESET Log Collector? in my signature? I've tested it and it opened a correct KB with instructions for using ELC. -
Checking on A Possible False Positive
Marcos replied to ram1220's topic in Malware Finding and Cleaning
Not surprisingly detected as a PUA: ..\Local\Temp\DTInstallerResources\Fusion.dll;a variant of Win32/FusionCore.AC potentially unwanted application -
ARP Cache Poisoning attack
Marcos replied to smuggler.ie's topic in ESET Internet Security & ESET Smart Security Premium
If you provide me with the network protection advanced log with an ARP cache poisoning attack detection captured, I should be able to confirm that it's caused by a different MAC address than the one from which the previous ARP response was sent. After generating the log and disabling advanced logging, gather logs with ELC and provide me with the generated zip file. -
HTML/ScrInject.B trojan, but site seems clean?
Marcos replied to ThorSwe's topic in Malware Finding and Cleaning
-
HTML/ScrInject.B trojan, but site seems clean?
Marcos replied to ThorSwe's topic in Malware Finding and Cleaning
The website / page in question was compromised and loads malicious javascript from 2 other malicious websites. -
Licensed Units vs Used Licenses
Marcos replied to Cap-it's topic in ESET PROTECT On-prem (Remote Management)
Check ELA/EBA for information about units that use the EFSW license. If you are using ESMC, it's a good practice to not add your license directly to ESMC, instead add it to EBA (eba.eset.com) and then add the EBA account to ESMC. Some new products, such as ESET Dynamic Threat Defense, require that. -
HTML/ScrInject.B Trojaner ???? Don't think so:
Marcos replied to RicoB's topic in Malware Finding and Cleaning
The detection is correct. The website was compromised and loads JS/Adware.Revizer js from another website. -
False Alarms JS/Adware.Agent.AA
Marcos replied to Rockin_Eset's topic in Malware Finding and Cleaning
The detection is correct. The fact that other vendors do not detect it does not make the code benign. Please provide the url (obfuscate http) on which the detection was triggered. -
Invalid license key
Marcos replied to Terry C's topic in ESET Internet Security & ESET Smart Security Premium
Please drop me a message with your license key so that I can check it on files. -
High CPU usage when using WSL
Marcos replied to ECELeader's topic in ESET Internet Security & ESET Smart Security Premium
-
ESET Endpoint Security 7 BETA signup
Marcos replied to Peter Randziak's topic in ESET Beta Products for Business Users
Endpoint v7 has already been released. We currently have no beta version to test. -
Question about future of ESET products for Linux Servers?
Marcos replied to karlisi's topic in General Discussion
A new version of Linux server products will be unveiled next year. -
No, decryption of Filecoder.Crysis is not possible.
-
High CPU usage when using WSL
Marcos replied to ECELeader's topic in ESET Internet Security & ESET Smart Security Premium
I didn't find anything unusual with regard to ESET. Ekrn spent 14,5s on the file C:\Users\ntona\AppData\Local\Packages\WhitewaterFoundryLtd.Co.16571368D6CFF_kd1vv0z0vy70w\LocalState\rootfs\lib\x86_64-linux-gnu\libc-2.27.so but other processes spent more than 700s on it. Does excluding the folder C:\Users\ntona\AppData\Local\Packages from scanning make a difference? -
ERA Agent 6.5 to EMA 7 artifacts
Marcos replied to ChristophBerthoud's topic in ESET PROTECT On-prem (Remote Management)
Please refer to https://forum.eset.com/topic/16476-after-upgrade-agent-to-v7-old-agent-is-also-visible/ for a resolution. To prevent having multiple topics on a subject, we'll draw this one to a close. -
ARP Cache Poisoning attack
Marcos replied to smuggler.ie's topic in ESET Internet Security & ESET Smart Security Premium
Most likely the device uses different MAC addresses over time. If you want to resolve it quickly, just right-click the appropriate record in the Network protection log and select "Don't block similar events in the future". -
I didn't find any issues. CPU utilization by ekrn is mostly < 1% CPU all the time: Does temporarily pausing protection or uninstalling ESET make a difference?
-
Eset security and driver esay ?
Marcos replied to mohammad51's topic in Malware Finding and Cleaning
Try uninstalling it the standard way via the Add and remove programs. By the way the uninstaller you've mentioned is just another PUA.