rgoldman
-
Posts
63 -
Joined
-
Last visited
Kudos
-
rgoldman gave kudos to Marcos in ESET PROTECT 9.1.18.1 (hotfix) - Problem access console after Update onprem
A list of supported MySQL ODBC drivers is available at https://help.eset.com/protect_install/91/en-US/database_requirements.html:
5.1, 5.2 5.3.0-5.3.10 8.0.16, 8.0.17 8.0.27 (Windows only) -
rgoldman gave kudos to russell_t in Hafnium related? False positive?
I also received this response from samples@eset.sk:
Thank you for your submission.
It was a false positive of our scanner and this issue is fixed in current version of detection engine.
Regards,
ESET Malware Response Team
-
rgoldman received kudos from russell_t in Hafnium related? False positive?
Getting alerts today on some of these (Exchange server):
Object URI: file:///C:/Windows/Microsoft.NET/Framework64/v4.0.30319/Temporary ASP.NET Files/owa/8e05b027/e164d61b/App_Web_oierlfno.dll
Severity: Warning
Detection Type: Trojan
Detection Name: MSIL/Webshell.BY
Object Type: File
Action Performed: Cleaned by deleting
Anyone know if this could be legit or false positive? Thanks
-
rgoldman gave kudos to Marcos in RMM Script to check if Endpoint Installed?
While I don't know any specific script, you can check the registry for existence of ESET registry keys or better check if the process ekrn.exe is running.
-
rgoldman received kudos from Peter Randziak in Slow IMAP with Antivirus
I will try this if problem continues. I’ve been using the latest version a few days and *I think* it’s good. Thanks.
-
rgoldman gave kudos to Marcos in EFS / Server 2012 R2
A memory dump of ekrn can be created via the advanced setup -> tools -> diagnostics -> Create (dump). I'd recommend opening a ticket with your local ESET support.
-
rgoldman gave kudos to Marcos in Setting up HIPS/policy
HIPS uses paths with file names. Hashes can be used only in exclusions or in ESET Enterprise Inspector to block files with specific SHA1.
