bbuffington

Thanks for your reply. I had stumbled across that older posting prior to submitting my inquiry. Based on that previous thread and Marcos' reply, it confirms my suspicion of a false positive. ESET recognized the files as .exe/installers and flagged it as a PUA. I am having a similar issue with it this morning flagging Intel's memory integrity driver as a PUA, I am scanning that as it has a history of being replaced with malicious software. This release seems to just be a touch stricter when it comes to its settings. Thanks again.

I was able to get the logs of the machine locally using the ESET Log Collector tool you linked earlier. The files are much larger, so I had to break them down a bit in order to fit under the 100MB file limit. Attached here is specifically the "Logs" folder that un-compressed is over 1GB. If you need other parts of the "EEE_Logs" folder let me know. Thank you Logs.zip

I ran a diagnostic scan through the web interface as it is a remote machine. I attached the entire .zip in hopes includes the part you need. 3024e87b-010d-46cd-ad8e-3c6ea6a58af3_era-diagnostic-logs_2022-12-02_09-37-28.zip

Hello After updating the endpoint agent to 10.0.2034.0 (detection engine 26353(20221202)) ESET has begun quarantining a few .msi files that are found in C:/Windows/Installer as well as some installer files for the drafting program that we use, Cabinet Vision. ESET is ruling them all as ML/Auger type Trojans. The Cabinet Vision install files were obtained directly from the developer of the software Hexagon and has been kept up to date with releases. I attempted to restore and run a full scan on the computer through the ESET web portal and the scan returned those files back to quarantine. I am unsure if there is actually an issue with these files, or the update to the agent has stricter policies and is throwing these as a false positive. If you need more information on the files themselves, please let me know and I will do my best to provide that information.