Jump to content

Cousin Vinny

Members
  • Posts

    52
  • Joined

  • Last visited

  • Days Won

    1

Cousin Vinny last won the day on August 29 2018

Cousin Vinny had the most liked content!

About Cousin Vinny

  • Rank
    Newbie
    Newbie

Profile Information

  • Gender
    Male
  • Location
    USA

Recent Profile Visitors

1,528 profile views
  1. You're likely still blocking content on that page from another site. Use your browser's developer console to find out what needs whitelisting.
  2. This is the hardware environment of the machine I was having trouble with (no USB 3.x devices): Audio inputs and outputs Remote Audio Microsoft 10.0.19041.1 12/6/2019 Audio inputs and outputs Speakers/Headphones (Realtek Audio) Microsoft 10.0.19041.1 12/6/2019 Batteries HID UPS Battery Microsoft 10.0.19041.1 6/21/2006 Computer ACPI x64-based PC (Standard computers) 10.0.19041.1 6/21/2006 Disk drives KXG60ZNV256G NVMe TOSHIBA 256GB (Standard disk drives) 10.0.19041.789 6/21/2006 Display adapters Intel UHD Graphics 630 Intel Corporation 27.20.100.8935 10/28/2020 DVD/CD-ROM drives HL-DT-ST DVD+-RW GU90N (Standard CD-ROM drives) 10.0.19041.1023 6/21/2006 Firmware System Firmware Microsoft 10.0.19041.1 6/21/2006 Human Interface Devices American Power Conversion USB UPS American Power Conversion 10.0.19041.868 6/21/2006 Human Interface Devices HID-compliant consumer control device Microsoft 10.0.19041.1 6/21/2006 Human Interface Devices HID-compliant system controller (Standard system devices) 10.0.19041.868 6/21/2006 Human Interface Devices USB Input Device (Standard system devices) 10.0.19041.868 6/21/2006 Human Interface Devices USB Input Device (Standard system devices) 10.0.19041.868 6/21/2006 Human Interface Devices USB Input Device (Standard system devices) 10.0.19041.868 6/21/2006 Imaging devices Brother DCP-7065DN Brother 1.1.19.19 4/4/2013 Imaging devices ScanSnap S1300i FUJITSU 2.0.3.1 1/31/2014 Keyboards HID Keyboard Device (Standard keyboards) 10.0.19041.1 6/21/2006 Mice and other pointing devices HID-compliant mouse Microsoft 10.0.19041.1 6/21/2006 Monitors Generic PnP Monitor (Standard monitor types) 10.0.19041.488 6/21/2006 Monitors Generic PnP Monitor (Standard monitor types) 10.0.19041.488 6/21/2006 Network adapters Intel Ethernet Connection (7) I219-LM Intel 12.18.8.9 1/24/2019 Network adapters WAN Miniport (IKEv2) Microsoft 10.0.19041.1 6/21/2006 Network adapters WAN Miniport (IP) Microsoft 10.0.19041.1 6/21/2006 Network adapters WAN Miniport (IPv6) Microsoft 10.0.19041.1 6/21/2006 Network adapters WAN Miniport (L2TP) Microsoft 10.0.19041.1 6/21/2006 Network adapters WAN Miniport (Network Monitor) Microsoft 10.0.19041.1 6/21/2006 Network adapters WAN Miniport (PPPOE) Microsoft 10.0.19041.1 6/21/2006 Network adapters WAN Miniport (PPTP) Microsoft 10.0.19041.1 6/21/2006 Network adapters WAN Miniport (SSTP) Microsoft 10.0.19041.1 6/21/2006 Ports (COM & LPT) Communications Port (COM1) (Standard port types) 10.0.19041.1 6/21/2006 Ports (COM & LPT) Intel Active Management Technology - SOL (COM3) Intel 2042.0.13.0 10/14/2020 Print queues ABS PDF Driver v400 AMYUNI Technologies 10.0.19041.1 6/21/2006 Print queues Adobe PDF Adobe 10.0.19041.1 6/21/2006 Print queues Brother DCP-7065DN Printer Brother 10.0.19041.1 6/21/2006 Print queues Fax Microsoft 10.0.19041.1 6/21/2006 Print queues Microsoft Print to PDF Microsoft 10.0.19041.1 6/21/2006 Print queues Microsoft XPS Document Writer Microsoft 10.0.19041.1 6/21/2006 Print queues OneNote Microsoft 10.0.19041.1 6/21/2006 Print queues OneNote Microsoft 10.0.19041.1 6/21/2006 Print queues Root Print Queue Microsoft 10.0.19041.1 6/21/2006 Print queues Send To OneNote 2016 Microsoft 10.0.19041.1 6/21/2006 Printers Brother DCP-7065DN Printer Brother 1.10.0.0 4/5/2013 Processors Intel Core i5-8600 CPU @ 3.10GHz Processors Intel Core i5-8600 CPU @ 3.10GHz Processors Intel Core i5-8600 CPU @ 3.10GHz Processors Intel Core i5-8600 CPU @ 3.10GHz Processors Intel Core i5-8600 CPU @ 3.10GHz Processors Intel Core i5-8600 CPU @ 3.10GHz Security devices Trusted Platform Module 2.0 (Standard) 10.0.19041.746 6/21/2006 Software components Intel Graphics Command Center Intel Corporation 27.20.100.8935 10/28/2020 Software components Intel Graphics Control Panel Intel Corporation 27.20.100.8935 10/28/2020 Software components Intel Optane Memory and Storage Management Component Intel Corporation 18.0.0.1 3/2/2020 Software components Intel Optane Pinning Shell Extensions Intel Corporation 18.0.1.1138 8/3/2020 Software components Intel Optane Pinning Shell Extensions Intel Corporation 18.0.1.1138 8/3/2020 Software components Realtek Asio Component Realtek 1.0.0.4 6/19/2017 Software components Realtek Audio Effects Component Realtek 11.0.6000.686 5/21/2019 Software components Realtek Audio Universal Service Realtek 1.0.0.172 5/20/2019 Software components Waves Audio Effects Component Waves 3.2.0.81 11/29/2018 Software devices Microsoft Device Association Root Enumerator Microsoft 10.0.19041.1 6/21/2006 Software devices Microsoft GS Wavetable Synth Microsoft 10.0.19041.1 6/21/2006 Software devices Microsoft RRAS Root Enumerator Microsoft 10.0.19041.1 6/21/2006 Sound, video and game controllers Intel Display Audio Intel Corporation 10.27.0.9 2/25/2020 Sound, video and game controllers Realtek Audio Microsoft 6.0.8710.1 5/22/2019 Storage controllers Intel Chipset SATA/PCIe RST Premium Controller Intel Corporation 18.30.1.1138 8/3/2020 Storage controllers Microsoft Storage Spaces Controller Microsoft 10.0.19041.1081 6/21/2006 System devices ACPI Fan (Standard system devices) 10.0.19041.1081 6/21/2006 System devices ACPI Fan (Standard system devices) 10.0.19041.1081 6/21/2006 System devices ACPI Fan (Standard system devices) 10.0.19041.1081 6/21/2006 System devices ACPI Fan (Standard system devices) 10.0.19041.1081 6/21/2006 System devices ACPI Fan (Standard system devices) 10.0.19041.1081 6/21/2006 System devices ACPI Fixed Feature Button (Standard system devices) 10.0.19041.1081 6/21/2006 System devices ACPI Power Button (Standard system devices) 10.0.19041.1081 6/21/2006 System devices ACPI Processor Aggregator (Standard system devices) 10.0.19041.1 6/21/2006 System devices ACPI Thermal Zone (Standard system devices) 10.0.19041.1081 6/21/2006 System devices Charge Arbitration Driver (Standard system devices) 10.0.19041.1 6/21/2006 System devices Composite Bus Enumerator Microsoft 10.0.19041.1 6/21/2006 System devices High Definition Audio Controller Microsoft 10.0.19041.1081 6/8/2021 System devices High precision event timer (Standard system devices) 10.0.19041.1081 6/21/2006 System devices Intel 300 Series Chipset Family LPC Controller (Q370) - A306 INTEL 10.1.16.3 7/18/1968 System devices Intel Gaussian Mixture Model - 1911 INTEL 10.1.7.2 7/18/1968 System devices Intel Host Bridge/DRAM Registers - 3EC2 INTEL 10.1.14.3 7/18/1968 System devices Intel Management Engine Interface Intel 2102.100.0.1044 1/3/2021 System devices Intel PCI Express Root Port #4 - A33B INTEL 10.1.16.3 7/18/1968 System devices Intel PCI Express Root Port #9 - A330 INTEL 10.1.16.3 7/18/1968 System devices Intel Power Engine Plug-in Intel Corporation 10.0.19041.662 6/21/2006 System devices Intel Serial IO GPIO Host Controller - INT3450 Intel Corporation 30.100.1816.3 4/17/2018 System devices Intel Serial IO I2C Host Controller - A368 Intel Corporation 30.100.1929.1 7/15/2019 System devices Intel SMBus - A323 INTEL 10.1.16.3 7/18/1968 System devices Intel SPI (flash) Controller - A324 INTEL 10.1.16.3 7/18/1968 System devices Intel Thermal Subsystem - A379 INTEL 10.1.16.3 7/18/1968 System devices Microsoft ACPI-Compliant System Microsoft 10.0.19041.964 6/21/2006 System devices Microsoft Hyper-V Virtualization Infrastructure Driver Microsoft 10.0.19041.1052 6/21/2006 System devices Microsoft System Management BIOS Driver (Standard system devices) 10.0.19041.1 6/21/2006 System devices Microsoft UEFI-Compliant System Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Virtual Drive Enumerator Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Windows Management Interface for ACPI Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Windows Management Interface for ACPI Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Windows Management Interface for ACPI Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Windows Management Interface for ACPI Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Windows Management Interface for ACPI Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Windows Management Interface for ACPI Microsoft 10.0.19041.1 6/21/2006 System devices Microsoft Windows Management Interface for ACPI Microsoft 10.0.19041.1 6/21/2006 System devices NDIS Virtual Network Adapter Enumerator Microsoft 10.0.19041.1 6/21/2006 System devices Numeric data processor (Standard system devices) 10.0.19041.1081 6/21/2006 System devices PCI Express Root Complex (Standard system devices) 10.0.19041.964 6/21/2006 System devices PCI standard RAM Controller (Standard system devices) 10.0.19041.1081 6/21/2006 System devices PCI-to-PCI Bridge (Standard system devices) 10.0.19041.964 6/21/2006 System devices Plug and Play Software Device Enumerator (Standard system devices) 10.0.19041.1 12/6/2019 System devices Programmable interrupt controller (Standard system devices) 10.0.19041.1081 6/21/2006 System devices Remote Desktop Camera Bus Microsoft 10.0.19041.1 6/21/2006 System devices Remote Desktop Device Redirector Bus Microsoft 10.0.19041.1 6/21/2006 System devices Remote Desktop USB Hub (Standard system devices) 10.0.19041.1023 6/21/2006 System devices System CMOS/real time clock (Standard system devices) 10.0.19041.1081 6/21/2006 System devices System timer (Standard system devices) 10.0.19041.1081 6/21/2006 System devices UMBus Enumerator Microsoft 10.0.19041.1 6/21/2006 System devices UMBus Enumerator Microsoft 10.0.19041.1 6/21/2006 System devices UMBus Enumerator Microsoft 10.0.19041.1 6/21/2006 System devices UMBus Root Bus Enumerator Microsoft 10.0.19041.1 6/21/2006 UCMCLIENT Cypress UCM Client Peripheral Driver Cypress Semiconductor Corporation 1.2.1.20 11/28/2017 Universal Serial Bus controllers Intel USB 3.1 eXtensible Host Controller - 1.10 (Microsoft) Generic USB xHCI Host Controller 10.0.19041.1081 6/7/2021 Universal Serial Bus controllers USB Composite Device (Standard USB Host Controller) 10.0.19041.488 6/21/2006 Universal Serial Bus controllers USB Composite Device (Standard USB Host Controller) 10.0.19041.488 6/21/2006 Universal Serial Bus controllers USB Printing Support Microsoft 10.0.19041.1081 6/21/2006 Universal Serial Bus controllers USB Root Hub (USB 3.0) (Standard USB HUBs) 10.0.19041.964 4/22/2021
  3. Of note; in my situation I had also identified KB5004945 as the culprit and attempted removal, however nearly every attempt was resulting in a BSOD as the uninstall neared completion until I finally managed to get it through somehow. I then reapplied the update via WSUS which resulted in the BSOD's recurring. This issue affected only one of ~50 identical machines.
  4. Marcos check your DM's, I saved you a memory dump from my problem machine.
  5. I just looked at the screenshot of my faulting PC's BSOD and noticed it is a different stop code than OP: PAGE_FAULT_IN_NONPAGED_AREA
  6. I've been experiencing this issue as well and am about to rebuild the affected PC. Sorry Marcos but I don't have the time to get you guys any crash dumps, I have limited time to get this machine back up and running. BSOD in eamon.sys, seems to happen on file access. It persistently worsened throughout the day yesterday to the point that the machine was unuseable for the most part. This is a Win10 box on 20H2, 9th gen i7, 8gb RAM, nvme ssd, domain enviro running the most current version of Endpoint Security. It seems to have been caused by the emergency patch for the print spooler vulnerability. Any time I tried uninstalling the update it would result in a BSOD. Attempting to uninstall from ESMC/ERA/Protect/whatever its called today was resulting in a BSOD as well. I was able to manually uninstall ESET locally on the box; it reported back correctly and then I ran an install task. Everything completed without issue and I made it through the initial scan. Handed the machine back over to the user and blammo - BSOD. I did also before reinstalling ESET manage to get the update removed then reapplied through WSUS with all active components of ESET temporarily disabled and this did not remedy the problem either. I'm going to go reimage that box now, i'm out of solutions for the limited time I have to deal with this.
  7. I suspect the site works fine from a private browser on the problem machine if it is working fine on every other machine. You probably just have to clear the browsers' cache on the admin laptop.
  8. The issue is the Detections column in the Computers section reporting on blocked websites which began after the most recent upgrade. Not the Detections section as indicated in your original reply to me. The change caught me off guard because when I was interviewed, a portion had to do with what screen do administrators have open most often. For me, it's the Computers section which now constantly looks like an outbreak since there is no way to filter by detection category.
  9. Now that it's been a few days I just wanted to reiterate - this is a major oversight and I do not like how i've lost such a great deal of insight into my network due to the constant reporting of blocked websites. This feels like i've essentially lost one of the tools I use to monitor for infections and outbreaks since it's constantly accumulating web blocker detection that are completely useless to me are reported at the same level as an actual detection that I would care about. This really sucks and I was one of the people that was interviewed by ESET last year.
  10. How do I stop web protection from generating detections in ESMC? Every URL that gets blocked is now adding to the detections number and it's like the boy who cried wolf. Super annoying.
  11. Is ESMC reporting that these outdated machines have the 6.5 Agent still installed? If that's the case, there are just two registry keys that need to be deleted that the v7 agent installation fails to remove. "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\07F21F149AF55F34494F355BE44BEE4C" "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{41F12F70-5FA9-43F5-94F4-53B54EB4EEC4}"
  12. There is a decryptor tool for Magniber available at https://gist.github.com/evilsocket/b89df665e6d52446e3e353fc1cc44711 You will have to know the AES Key in order to use this tool to decrypt your files. The full analysis of this threat can be found at https://blog.malwarebytes.com/threat-analysis/2017/10/magniber-ransomware-exclusively-for-south-koreans/
  13. I assume you're running Office 365 Outlook with the email service (Exchange Online) that is included with your E3 subscription and not a local Exchange server while the "malware, connection and spam filtering" you mentioned is EOP. I have not had to deal with this issue myself but it is something that MS has had trouble with for years. In the past, some people (not specifically ESET users) have commented that by deleting and recreating your email account on the problem computer solves this issue. This is a common solution to many of Outlook's weird behaviors and you might want to give this a shot.
  14. Try running the "Computers with their RAM details" report instead of the "Count of computers grouped by total RAM capacity" report. It's in the same section.
×
×
  • Create New...