Jump to content

j-gray

Members
  • Content Count

    282
  • Joined

  • Last visited

  • Days Won

    4

j-gray last won the day on May 31

j-gray had the most liked content!

Profile Information

  • Location
    USA

Recent Profile Visitors

1,902 profile views
  1. @Marcos Yes, PUA's have been cleaned properly on the problematic systems. Thank you!!
  2. @Marcos @MichalJ Where may I upload log files? I'd prefer not to post in the forum. Thank you.
  3. @MichalJ The PUPs flagged as critical are JS/Mindspark.G, JS/Spigot.B, JS/Visicom.A, OSX/Mackeeper.DL, and on Windows, Win32/AirAdInstaller.A, JS/Visicom.A, JS/Spigot.B. Both Real-time and On-demand set for strict cleaning have been unable to clean. This a recent occurrence where nothing from PUPs to trojans and other malware are not getting successfully cleaned with 'strict cleaning' enabled, causing a high count of active threats. OS X is a mix of 10.12.6 and 10.13.6 running ESET version 6.7.654.0 Windows is a mix of 7 and 10 running ESET version 7.0.2100.4 and 7.1.2045.5
  4. Yes, I should have clarified. On the Windows clients I see this for items typically flagged as Trojans. It's odd to me that a Trojan gets flagged with severity 'Warning', where a PUP gets flagged with severity 'Critical'. This seems backwards. I also don't understand why those that get flagged with 'Critical' and 'Active Threats' show up in the console with a green check mark indicating healthy status. See below:
  5. On OS X clients, lately I've been seeing a lot of unhandled PUP's with little information to go on. This is the result of Full scan with cleaning: Policies are set for 'Strict Cleaning' on both real-time and on-demand scans. I'd like to understand what's (not) happening here. I'm seeing similar on Windows clients, though it typically says, "action selection postponed until scan completion" but never takes any action even after the scan completes.
  6. I've found similar instances and attribute it to some form of agent corruption. I haven't found an easy way to repair the agent, but the majority of the time, simply uninstalling and reinstalling the agent resolves the issue. Not what I would consider a "fix", but does get things working again.
  7. Can you please clarify the implications of this: "ESET Endpoint Antivirus is notarized by Apple and recognized by Gatekeeper" Does this mean that ESET kernel extensions will no longer be blocked by Mac OS?
  8. Exactly. Though I view wake-up call more like wake-on-lan, requiring network broadcast, which is not a good practice across multiple subnets. I'm looking for a simple 'send policy' that doesn't require network broadcast. Even if it's a basic command I can run from the client (remotely).
  9. Description: Mechanism to force policy refresh on client(s) from ERA console. Detail: There doesn't appear to be a way (that I've found) to force a client to pull a new policy. We either have to wait for the policy refresh interval or create a new policy with a shorter refresh interval and apply it. It would be great to have a right-click option from the ERA console to force an immediate policy refresh.
  10. Description: Better method for detecting unmanaged clients Detail: RDS is not a practical solution in environments with multiple LANs, it can't be installed on OS X, and relies on outdated/unsupported software (WinPcap). A simple ping-sweep tool that works across multiple subnets and shows unmanaged clients, or better yet, a dynamic group that does the same so that an agent install task can be run when client joins the group. This would be awesome, especially for OS X where Group Policy automated install is not an option.
×
×
  • Create New...