Jump to content

Marcos

Administrators
  • Content Count

    15,114
  • Joined

  • Last visited

  • Days Won

    653

Kudos

  1. Upvote
    Marcos received kudos from BeanSlappers in Future changes to ESET Internet Security and ESET Smart Security Premium   
    I'm not sure if this is possible from technical point of view. Anyways, this topic is monitored by people responsible for making decisions about future features so it will be noted.
  2. Upvote
    Marcos received kudos from Stworek in chrome.exe - Powelix malware or nothing to worry about?   
    This behavior is normal. If you press Shift+Esc in Chrome, the Chrome task manager will open. It shows more processes than the number of open tabs, however the number of the processes is not exactly same as the number of processes seen in the system Task manager.
  3. Upvote
    Marcos received kudos from Binnyrog in Introduce yourself   
    Are you looking for protection for Windows or Linux? For Windows we have ESET Internet Security and ESET Smart Security Premium (which is basically EIS with disk encryption and password manager added). Both will protect you at various layers in the system as described at https://www.eset.com/int/about/technology/. You can download EIS from https://www.eset.com/int/home/internet-security/download/.
    For Linux we have ESET NOD32 Antivirus for Linux desktop. It can be downloaded from https://www.eset.com/int/home/antivirus-linux/.
  4. Upvote
    Marcos received kudos from kbrooks in ESMC says up-to-date with 7.0.577?   
    Please read https://support.eset.com/kb3690/.
    The ESMC release 7.0.72.2 contains the version 7.0.577.0 of the ESMC Server for Windows and version 7.0.471.0 for Linux.
  5. Upvote
    Marcos received kudos from ProTruckDriver in ESET Cyber Security Pro not working with MacOS 10.15   
    MacOS Catalyna is to be released in the fall. We officially support only final versions of operating systems, not betas since a lot can be changed under the hood before the new MacOS is released which could break ESET's functionality. At the time of the official release of the new MacOS, we should have a compatible version of ESET CyberSecurity and ESET CyberSecurity Pro at your disposal.
  6. Upvote
    Marcos received kudos from Farah in ESET Endpoint Security 7.1 uses more and more RAM as time goes on   
    We have pinpointed a memory leak in the memory dumper. A fix is being reviewed and will be released through an automatic module update next week.
  7. Upvote
    Marcos received kudos from brw20 in Nod32 Error creating the temporary file when trying update database   
    Please provide a Procmon log from a failed update attempt as per https://support.eset.com/kb6308.
    In particular, start logging with Procmon, run update and after it has failed, stop logging. Then save the log, compress it and provide it to me for perusal.
     
  8. Upvote
    Marcos received kudos from Zen11t in ESET Endpoint Security 7.1 uses more and more RAM as time goes on   
    We have pinpointed a memory leak in the memory dumper. A fix is being reviewed and will be released through an automatic module update next week.
  9. Upvote
    Marcos received kudos from peteyt in Windows 7 vs Windows 10??   
    Also don't forget about AMSI and protected services which were not available prior to Windows 8.1. With the help of AMSI script malware can be more efficiently detected. New script malware may be undetected on systems that don't support AMSI.
  10. Upvote
    Marcos received kudos from Mirek S. in EFS 7.0.12014.0 - MSSQL ERROR   
    It's not a problem. The only reason why it occurs with v7 is that older version didn't support protected service, a security feature of Windows. In v7 it's possible to disable protected service at the cost of worsening protection, however, it wouldn't be worse than with v6.5 which didn't support it yet. With v7 you get also ransomware shield which can proactively protect the server from encryption by ransomware.
  11. Upvote
    Marcos received kudos from Mirek S. in EFS 7.0.12014.0 - MSSQL ERROR   
    There is no way to solve it if Microsoft doesn't update the rll file with one with a valid signature except disabling Protected service in the HIPS setup which would enable unsigned dll files to be loaded in ekrn.exe. Of course, that would be a security hole and unnecessary risk so we don't recommend disabling protected service.
  12. Upvote
    Marcos received kudos from Mirek S. in <resource-not-found-0x120000ef> alerts after ERA RA to ESMC 7 migration   
    You must have an older v6.6 installed (6.6.0.0 – 6.6.2063 are affected) so upgrade to v7 will surely fix it and the notice will go away then.
  13. Upvote
    Marcos received kudos from notimportant in Website Blacklist Removal Request (misjudged)   
    The block is correct. We informed that leaked licenses were published on it. In turn we were promised they would be removed so we unblocked it then. However, shortly after unblocking it the license and other illegal stuff was put back again and this repeated several times. We are not going to play cat and mouse.
  14. Upvote
    Marcos received kudos from MartinK in PUP not handled   
    Today we've released a fixed version of the Antivirus and antispyware module 1552.3 which addresses cleaning issues on Mac. Could you please check if PUAs are now cleaned properly?
  15. Upvote
    Marcos received kudos from j-gray in PUP not handled   
    Today we've released a fixed version of the Antivirus and antispyware module 1552.3 which addresses cleaning issues on Mac. Could you please check if PUAs are now cleaned properly?
  16. Upvote
    Marcos received kudos from padira premchandu in Cant fix Win32/Agent.TBV   
    If you have a paid license for an ESET product, please provide logs collected with ESET Log Collector for a start.
  17. Upvote
    Marcos received kudos from deloppoled in ESET keeps stealing focus from Firefox   
    It will be fixed in v12.2. I reckon the beta version has it already fixed.
  18. Upvote
    Marcos received kudos from archome in HTML/ScrInject.B trojan, but site seems clean?   
    The website was compromised and still contains a malicious code.
  19. Upvote
    Marcos received kudos from CMS in Updating Names   
    You can synchronize computer names by running the following server task:

  20. Upvote
    Marcos received kudos from kamiran.asia in Realtime module not functional   
    The problem with the machine from which the latest logs were taken is that you have an old eamonm.sys driver from v4.5 running. Did you upgrade to EFSW v7 from EFSW v4.5? If so, a restart is needed after installation for new drivers to get loaded. Did you reboot the server? If so, please uninstall EFSW completely, make sure there is no eamonm.sys driver in c:\windows\system32\drivers and install EFSW v7 from scratch.
  21. Upvote
    Marcos received kudos from TomasP in Certificate Question   
    The countersignature method of time stamping allows for signatures to be verified even after the signing certificate has expired or been revoked. The time stamp allows the verifier to reliably know the time that the signature was affixed and thereby trust the signature if it was valid at that time.  Therefore you can disregard the SHA1 and SHA256 signatures.
     
  22. Upvote
    Marcos received kudos from kamiran.asia in Realtime module not functional   
    I was right, real-time protection doesn't activate because of the image state IMAGE_STATE_UNDEPLOYABLE. There's something wrong with Windows, it should be in IMAGE_STATE_COMPLETE state.
  23. Upvote
    Marcos received kudos from dit in meaning of Mindspark   
    I don't think it's necessary to remove the extension. Please follow the instructions in the KB https://support.eset.com/kb6551 if it is continually being detected.
  24. Upvote
    Marcos received kudos from Mauricio Osorio in Ransomware SDEN   
    Files were encrypted by Filecoder.LockedFile. According to the logs, there were about 170,000 failed attempts to log in via RDP as "administrator" and alike in approx. one day when the encryption occurred. Also an older version of EFSW 6.5 without Ransomware shield was installed.
    The OP was informed and improvements in protection were suggested.
  25. Upvote
    Marcos received kudos from 0xDEADBEEF in Ransomware SDEN   
    Files were encrypted by Filecoder.LockedFile. According to the logs, there were about 170,000 failed attempts to log in via RDP as "administrator" and alike in approx. one day when the encryption occurred. Also an older version of EFSW 6.5 without Ransomware shield was installed.
    The OP was informed and improvements in protection were suggested.
×
×
  • Create New...