Peter Randziak
-
Posts
3,516 -
Joined
-
Last visited
-
Days Won
207
Posts posted by Peter Randziak
-
-
Hello,
ESET Smart Security has the protection enabled in default settings - it is called "TCP protocol overload detection"
-
Hello,
the Devs analyzed the dump but we weren't able to find the culprit for sure, but the Protocol filtering seems to be the one causing this.
Can you please try to disable Protocol filtering, restart the PC and try to reproduce the issue?
Do not forget to re-enable it after the test.
How quickly is the memory leaking?
In case you would like to send us some dumps you can use ftp.nod.sk/support/ you have to use unique file name, than just send me a PM with it's name.
Thank you.
-
Hello,
in case you have x64 OS please create a dump via Procdump utility, these dumps are much easier to analyze than dumps created via Task manager.
-
Hello,
the file in question is detected as Win32/TrojanDownloader.Hancitor.B.
Which version of Virus signature database you have? What ESET product do you use?
P.S. Please do not upload malicious files in unencrypted archives it poses a risk for forum users.
-
Hello Staj,
I have forwarded this to responsible product manager and developer so they will look at it.
Thank you for your suggestion.
P.R.
-
Hello,
I have one dump from BALTAGY, I have created ticket with the Dev team to check it.
In case you have memory usage over 200 MB please create a dump and let me know via private message.
-
Hello Roger,
the sales processes vary from country to country so I agree that the best way is to contact customer care they will be able to help you for sure.
-
Hello,
are you able to reproduce the issue on demand?
If yes please perform this test:
1. Disable HIPS
2. Reboot the machine
3. Perform system restore - does it work? If yes please do following:
4. Enable HIPS and reboot the machine
5. In advanced settings, select log all blocked operations in HIPS menu
6. Clear the HIPS log
7. Perform system restore
8. In case it fails please send us HIPS log for analysis.
Thank you.
-
Hello,
ESET products detect it as OSX/Iservice.AG.
The detection for first samples has been added almost month ago.
-
In case of BSOD memory written to the pagefile.sys and than on next system start is converted to a memory.dmp file, but you need to have it set.
Memory dumps can be usually compressed with really high compression ratio so 980 MB from 12 GB RAM may be O.K (anyway I assume that most of the memory was not allocated.)
In case you have only memory leak on ekrn.exe processdump would be enough (you can create it via Task manager) alongside with SysInspector log.
In case you get a BSOD we need full memory dump and SysInspector for analysis.
-
Hello,
can you please compress the memory dumps alongside with ESET SysInspector and send me a download link via private message?
We will check it.
-
Hello Panther-modern,
thank you for your suggestions, I have forwarded them to product manager responsible for consideration.
-
-
Hello,
thank you for your answer.
Please check the log once in a while and let us know if you see the error again.
-
Hello SCR,
are you able to reproduce the issue, or it happened just once?
-
Hello,
the situation is getting better over time, it should get back to normal during the weekend.
In case you are not able to update you may try hitting "update now" button few times, that should help.
-
Hello,
I will check it with our malware research team.
In future please report such issues as described in this KB article.
Thank you.
-
Hello,
you can follow steps described in this comprehensive KB article about Conficker.
Conficker – How do I protect myself?
Let us know, how it went.
-
Hello Geosoft,
are you still able to reproduce the issue?
I have v.8 on my laptop and it is working fine for me.
-
Hello Rugk,
thank you for your suggestions with detailed explanation.
I have forwarded this thread to product manager responsible.
-
Hello,
we have a little surprise for you.
Check this link.
Our CEO always leads by example and he accepted the challenge.
-
Hello Johnny,
can you please specify what kind of issues are you facing?
Describe them as much in details as possible.
-
Hello Metro,
can you please enable Diagnostics (Open advanced setup -> Tools -> Diagnostics) and set dump type to full?
After that wait until the issue reoccurs compress contents of C:\ProgramData\ESET\ESET Endpoint Security\Diagnostics with SysInspector log and send me a download link.
We will check it.
Regards,
P.R.
-
Hello Winsonyeung,
please contact your local ESET technical support, they will assist you with the issue.
The most common issue with brand new laptops is other pre-installed AV software, please check if you have some.
Please post back your findings.
Thank you.
Blocked website
in Malware Finding and Cleaning
Posted
Hello,
to contact our lab you can follow these steps described in our KB article:
hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN141
P.R.