mandiato
ESET Insiders-
Posts
151 -
Joined
-
Last visited
-
Days Won
2
Everything posted by mandiato
-
Eset Password Manager
mandiato replied to Chevrolet's topic in ESET Internet Security & ESET Smart Security Premium
-
Eset Password Manager
mandiato replied to Chevrolet's topic in ESET Internet Security & ESET Smart Security Premium
My ESET Password Manager also expired, but my licence for ESSP (Insider one) is valid one year longer... -
Just thought I would show off my collection
mandiato replied to jadinolf's topic in General Discussion
What a shame, that I didn't make any photos of our safe shelf when there was more than 120 boxes of ESET NOD 32... /me cry at corner... -
Activation Error Act 0
mandiato replied to ashwini's topic in ESET Internet Security & ESET Smart Security Premium
I've got the same error trying to activate my ESET protection right now... -
You say that Microsoft lies on their pages about pricing? Or that MTP is available for end users? Ahh, you talk about MAPS not MTP... OK. So brief description of MAPS is here: https://en.wikipedia.org/wiki/Microsoft_Active_Protection_Service And just cite some parts: Users determines in that system what is malware or not? Really? Sending data entered in any web forms is necessary to protect us? Such as login/password to banking system or credit card number doing payments? Is this so good?
-
But you forgot about only one small thing. Cloud protection is available only for Enterprise users, and need to be bought. Costs ? Yearly more than Windows subscription itself: https://www.microsoft.com/en-us/cloud-platform/advanced-threat-analytics-pricing (80$ per machine or 61.50$ per user yearly for access to cloud protection) And these prices are a little bit expensive as for free software as you described it here :-)
-
Probbaly false positive in Dragon Age Inquisition
mandiato replied to mandiato's topic in Malware Finding and Cleaning
It's looks like after latest update no longer DA Inquisition files are recognised as malware, gamest now starts perfectly without any warning and no longer detections about malicious in DA:I files... -
Probbaly false positive in Dragon Age Inquisition
mandiato replied to mandiato's topic in Malware Finding and Cleaning
Yes, I'm sure that this one is legit. Even trying "Repair" function in Origin, which detects modified file results in failing when downloading that missing file, and ESET blocks it. --> from log <-- Time;Scanner;Object type;Object;Threat;Action;User;Information;Hash;First seen here 27.03.2017 19:35:48;Real-time file system protection;file;D:\electronic arts\dragon age inquisition\dbdata.dll;a variant of Win32/Packed.VMProtect.ACL trojan;cleaned by deleting;ZARZĄDZANIE NT\SYSTEM;Event occurred during an attempt to access the file by the application: C:\Windows\System32\CompatTelRunner.exe (39E7D1F98AB5509F9B1BBAD4F7873E3DEF554DEE).;DB314C5A3B1AF978955D92768E3102C83787843A;22.09.2015 02:49:32 27.03.2017 19:43:31;Real-time file system protection;file;D:\Electronic Arts\Dragon Age Inquisition\dbdata.dll_DiP_STAGED;a variant of Win32/Packed.VMProtect.ACL trojan;cleaned by deleting;MONSTERXXL\Mandi;Event occurred on a new file created by the application: D:\Origin\Origin.exe (7507E483479218E3E922860497A0E11A2C427882).;DB314C5A3B1AF978955D92768E3102C83787843A;22.09.2015 02:49:32 27.03.2017 19:53:24;Real-time file system protection;file;D:\Electronic Arts\Dragon Age Inquisition\dbdata.dll_DiP_STAGED;a variant of Win32/Packed.VMProtect.ACL trojan;cleaned by deleting;MONSTERXXL\Mandi;Event occurred on a new file created by the application: D:\Origin\Origin.exe (7507E483479218E3E922860497A0E11A2C427882).;DB314C5A3B1AF978955D92768E3102C83787843A;22.09.2015 02:49:32 --> end <-- And sshot when it occurs. Origin client tries to download missing file, and ESET deletes it because found threat in it, and this is reproduceable every time. [edit] And log collector log files also attached. essp_logs.zip -
Today ESET starts to delete file from Dragon Age Inquisition - to remove any doubts - legit and original - ESET detects probably threat on one file and delete it, repairing installed Dragon Age Inquisitioon results in failed, because ESET blocks downloading missing file, without that file game cannot be run. Below attached line from log about cleaning file: --> begin <-- Time;Scanner;Object type;Object;Threat;Action;User;Information;Hash;First seen here 27.03.2017 19:43:31;Real-time file system protection;file;D:\Electronic Arts\Dragon Age Inquisition\dbdata.dll_DiP_STAGED;a variant of Win32/Packed.VMProtect.ACL trojan;cleaned by deleting;MONSTERXXL\Mandi;Event occurred on a new file created by the application: D:\Origin\Origin.exe (7507E483479218E3E922860497A0E11A2C427882).;DB314C5A3B1AF978955D92768E3102C83787843A;22.09.2015 02:49:32 --> end <-- [edit] Or maybe this is right and DA:I is infected by design? Who knows... :-)
-
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
I know what is Gamer mode is :-) and I nailed down my problems to some windows applications which shows animation as wallpaper on desktop (namely Dreamscapes), and in that case ESET goes into gamer mode, but in fact there's no game or movie runned. Maybe others have got similar extensions on system and maybe this is worth to make some exclusion, like Dreamscapes won't invoke gamer mode? :-) -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
And some more investigating it further... It looks like this is not problem with Fences but with Deskscapes which ESET recognises as FullScreen apps and get to game mode. When Deskscapes are off, ESET recognises properly infections and show window with possibility to select action. -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
itman: I'm betatester of ESET and also responsible for security in my company, so I know how to work with that file, and YES threat is in archive, to be more precise in archive which was earlier sent as sample of malware not detected earlier by ESET :-) and I don't delete it only due to some issues with cleaning after signatures was added and ESET started recognise it :-) -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
I nailed it down a little bit further... And it occurs only when I start scanning from popup menu in "Fences" on desktop, using Windows Explorer or DirectoryOpus listers when selecting scan option leads to proper window with scan results and action to take. So this is something with interact between fences and ESET in my case. -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
Yep, but this is only test file, one and only one which is actually available to such test on my system, so when I delete it, I cannot any longer reproduce that bug. And this is bug when something should ask what to do, and don't do it, leaves infection with false sense of security. Right now I'm in contact with devs to nail it down. -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
This won't help at all, in both cases in log is mnessage about postponed asking user for action but no action window shows up at the end, user can only dismiss log files... At attached sshot upper vindow is from scaning with no action lower with normal ... No difference. -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
OK. I finally reproduce that: And after scan I can only dismiss and cannot select action. This happened with scan on demand from popup menu. This happened at default settings, so something goes wrong here. If I try to download infected file from Internet, it is blocked, and temp file is deleted, but when I run scan on demand I'm only informed about infection fact, and ESET shows that selection is postponed to end of scanning, but at end of scanning I can only dismiss information and log, I cannot select cleaning action. And as I said this is on default settings with clean install (no playing with changing detection level, or actions. Pure default settings. When I try to run that file it is cleaned by default by deleting infected doc from archive, but there's no possibility to select action after on demand scan. Something wrong goes here, so I'll raise bug at bugtracker. -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
update should work, and during update you probably don't need key, because it will be imported form v9, but if you lost your credentials go to: https://www.eset.com/us/support/lost-license/ -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
https://www.eset.com/int/home/antivirus/#download and on bottom at right side select "Advanced download" and select interesting for you version. -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
It looks like on sshot below right now on my system, but I remember that for a long time I also cannot bring that requester to front, I was only informed about threats found. But maybe time to upgrade your installation to latest v10 version? Regards -
New User, Need help with infected files.
mandiato replied to SamHolmes's topic in Malware Finding and Cleaning
Yes, I figured it out... Right now I'm looking for some "suspicious" files to test it a little bit... Probably some bug in ESET