Camilo Diaz
Members-
Posts
42 -
Joined
-
Last visited
Everything posted by Camilo Diaz
-
Microsoft Office Zero-Day Follina
Camilo Diaz replied to stereo_grabb's topic in Malware Finding and Cleaning
You should definitely apply the work around... -
-
Microsoft Office Zero-Day Follina
Camilo Diaz replied to stereo_grabb's topic in Malware Finding and Cleaning
Hi Marcos, what's the signature ID / Engine version? -
It seems like the client is not pickup up the policy correctly and it keeps displaying the Eset icon in the Dock. I have confirmed the the policy is configured correctly and applied to the device... See attached screenshots. I am also getting reports that the Client is displaying the OS updates notification, but we have it configured it to NOT display those... See screenshots.. MacOS Monterey 12.3.1 EEA 6.11.202.0
-
Real-time protection not funtional
Camilo Diaz replied to offbyone's topic in ESET Endpoint Products
Hey Marcos, as mentioned by other members, as soon as an user logs in, Real-Time protection start working again, so I don't think it will be feasible to get the logs from a device experiencing the issue... -
Real-time protection not funtional
Camilo Diaz replied to offbyone's topic in ESET Endpoint Products
My Bad. Have sent you a link with the full logs.Thanks -
Real-time protection not funtional
Camilo Diaz replied to offbyone's topic in ESET Endpoint Products
Hi Marcos, we are experiencing exactly the same issue in about ~1000 workstations. all upgraded via Installation Task from ESMC . I have enabled FULL dump for logs and attached the results here. btw. it's only affecting EEA 7.3.2041.0 eea_logs.zip -
ESET Security Management Center (Server), Version 7.2 (7.2.1278.0) ESET Security Management Center (Web Console), Version 7.2 (7.2.230.0) We are currently managing the Antivirus detection by adding the endpoints to a Dynamic Group and running a Scan Task which if successful it resolves the detection. My understating is that for the 'Firewall' Module detection, this has to be manually resolved. (Is there any insight of improvements on this?) For the 'Web protection Module' we have a fair amount of blocked detection 'attempt to connect to URL - Blocked by PUA blacklist/Blocked by Internal blacklist'. We'd like to auto-resolve/close this if the status is 'blocked'. Is this possible? Thanks, Camilo.
-
Hi Marcos, I was experiencing the same with a few clients and after a reboot the warning is gone for good . Cheers
-
Latest update causes eset_proxy to flip out
Camilo Diaz replied to Pythic's topic in ESET Cyber Security (for Mac)
We have experienced the same issue again, eset_proxy process consuming 100% CPU and blocking somehow the network on the affected devices. Running Eset Endpoint Security 6.90.0. All affected devices are running macOS 10.14 (Mojave). Have reported it to ESET so hopefully we'll get an answer soon. Thinking to upgrade to 6.90.3 but not sure if it will make any difference at this stage. -
Agent Upgrade to Dynamic groups
Camilo Diaz replied to Camilo Diaz's topic in ESET PROTECT On-prem (Remote Management)
Ok problem solved. I had missed that notification which explains it will attempt to upgrade as much as it can (in my case, the agent). I can also select a dynamic group. Thanks! -
Agent Upgrade to Dynamic groups
Camilo Diaz replied to Camilo Diaz's topic in ESET PROTECT On-prem (Remote Management)
Thanks @MichalJ. I've had a look at the 'security management center components upgrade' but if I choose 'Server Task', again I can't select a dynamic group and If I select 'Client Task', is not clear what the task is doing... Upgrading the client? upgrading the agent? -
Is there a way to select a Dynamic group as the 'Target' group for an Agent Deployment Task? As you can see in the screenshot, Dynamic groups are greyed out. I have +8000 devices so ideally I want target the task only to those that are not in the latest version. ESET Security Management Center (Server), Version 7.1 (7.1.717.0) ESET Security Management Center (Web Console), Version 7.1 (7.1.393.0) edit: This is the official KB from Eset which is not clear on my particular questions. https://support.eset.com/en/kb6741-remotely-install-or-reinstall-the-eset-management-agent-using-eset-security-management-center-7x Thanks, Camilo
-
Latest update causes eset_proxy to flip out
Camilo Diaz replied to Pythic's topic in ESET Cyber Security (for Mac)
you mean 6.8.400.0 ? -
Latest update causes eset_proxy to flip out
Camilo Diaz replied to Pythic's topic in ESET Cyber Security (for Mac)
I have opened a case with our local customer care and provided the requested logs, but they didn't find the root cause of the problem. I was provided with the beta version 6.8.400.0 and issue still occurred there. Edit: Provided logs esets_proxy log level has been set to verbosity level = 8 Sample of esets_proxy.txt customer_info.zip -
ESET Security Management Center (Server), Version 7.0 (7.0.577.0) ESET Security Management Center (Web Console), Version 7.0 (7.0.429.0) ESCM is complaining under Status Overview, that cannot reach 'Server module updates'. "Server module update is failing. See audit log for more details." Outbound traffic for the ESCM server is allowed on ports 80/443. Current config is to check every few hours. SERVER: AUTOSELECT (Regular Update) I've had a look at the logs on the servers but can't find any trace of what's wrong. Connection to the repositories is working fine. Any ideas? Cheers ,Camilo.
-
EFS 7.0.12014.0 - MSSQL ERROR
Camilo Diaz replied to saroot's topic in ESET Products for Windows Servers
Thanks Marcos. When you said "it's possible to disable protected service", do you mean to disable 'Automatic exclusions to generate" for Microsoft SQL Server? -
EFS 7.0.12014.0 - MSSQL ERROR
Camilo Diaz replied to saroot's topic in ESET Products for Windows Servers
We had the same issue and have downgraded EFS to 6.5.12010.0. Will stay in that version until the problem is fixed.