Jump to content

Lockbits

Members
  • Content Count

    24
  • Joined

  • Last visited

Profile Information

  • Location
    Chile

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. We have two new customers (one is an Enterprise with more than 1000 seats) that migrated from others AV to ESET. They are using V7 including of course ESMC and so far it’s working very well in both cases. For new customers we are installing V7 and for old ones we are waiting for the activation in ESMC of upgrade via task. I vote for 1.
  2. Today more spam were sent using Domino server. 31/08/2018 14:26:06 SMTP Server: 180.113.10.37.baremetal.zare.com (37.10.113.180) connected 31/08/2018 14:26:06 SMTP Server [1670:0035-10C0] Mail from infocloudclienti@telleria.cl rejected for policy reasons. Sender is denied in your configuration. 31/08/2018 14:26:06 SMTP Server: 192.168.233.87 connected 31/08/2018 14:26:06 SMTP Server: 180.113.10.37.baremetal.zare.com (37.10.113.180) disconnected. 0 message received 31/08/2018 14:26:09 SMTP Server: 180.113.10.37.baremetal.zare.com (37.10.113.180) connected I think that maybe computer whose IP is 192.168.233.87 can be infected. We'll check. What do you think guys?
  3. Thank you Marcos. So you think that a PC is infected and sending spam through the Domino server?
  4. Hello guys, We've a customer that has 180 licenses of ESET Secure Business. They have ERA 6.5, EMS for Domino 6.5 and EES 6.5. Some days ago the administrator noted that someone is sending a large amount of spam emails through their Domino server to different addresses ending in .it. Unfortunately the TI guy deleted the emails so we don't have the proof. What we have is the ESET Log Collector of Domino server, some screenshots of the spam message and also a Domino log indicating the emails being sent to multiple addresses that are unknown for the company. The customer asked us why EMS is not blocking the spam from being send using their mail server however we think that the real issue is that someone is sending spam through Domino. Can be a infected workstation that is sending those spam? Can be a leaked mail credential that cyber criminals are using to send out spam? Thank you. emsl_logs.zip LOG dia 22.txt
  5. Hi Peter, As we already talked, I want to participate in the early access of V7. Thank you.
×