Clean Virus Alerts in the "Compliance" "Devices with Viruses" Dashboard ?

bas_dsi · April 6, 2021, 9:57am

Hi,

we do not find any option to clean “infected files” alerts that comes up in the “Devices with Viruses” of the “Compliance” dashboard in the itarian dashboard,
even after having clicked on the different submenus going to the infected files (that have been cleaned years ago).

nct · April 7, 2021, 11:12pm

Hi @bas_dsi , after deleting the malware, you need to run a full AV scan to clear the infected status.

bas_dsi · April 8, 2021, 9:09am

As you can see,
last full scan = 06/04/21,
and I can confirm you, that the infected files were removed a long time ago (but I double ckecked immediately, files are not in the computer)

ilgazy · April 8, 2021, 11:50am

Hello @bas_dsi ,

As I see it is unrecognized files scan, instead of full scan. As @nct stated, you need to run a full scan on the endpoint, then the list will be updated.

Best regards,
Ilgaz

nct · April 8, 2021, 11:59am

@ilgazy Do you mean run it locally on the endpoint instead of from the console?

ilgazy · April 8, 2021, 12:14pm

No, it can either be run from endpoint or initiated from console. It seems what I wrote caused misunderstanding.

I just observed from the screenshot that @bas_dsi provided and tried to mention that the scan type has to be AV Full Scan.

It can be of course initiated from Scan -> Antivirus Full Scan button directly from console.

Best regards,
Ilgaz

bas_dsi · April 9, 2021, 7:59am

OK thank you, Asking for full scan remotely does not work,
that’s why, so we launched from the end point, I’ll keep you informed.

nct · April 9, 2021, 8:02am

@bas_dsi what version of Comodo Client Security do you have installed on this endpoint?

bas_dsi · April 9, 2021, 8:45am

@nct : 6.40.40080.21030

For info, Scan manually launched has been “aborded” without any info… user launched it again… but I think that something is blocking full scan on endpoint.

nct · April 9, 2021, 8:48am

That’s just the Itarian Communications Client, could you check on the Comodo Client Security which version you are running?

bas_dsi · April 9, 2021, 9:01am

ok, sorry 11.4.0.7655

nct · April 9, 2021, 9:08am

@bas_dsi , unless you have a specific reason to run such an old version of CCS, update to 12.6.0.8441 and run a full scan again.

bas_dsi · April 9, 2021, 9:30am

Ok,
I don’t really manage updates of the versions that’s why ;-D

i’ll try to see how to update it.

nct · April 9, 2021, 9:45am

Click on the machine on the console > Install or Manage Packages > Update Additional Packages

bas_dsi · April 9, 2021, 12:07pm

Done !

But still impossible to finish the scan

PremJkumar · April 9, 2021, 1:11pm

Hi @bas_dsi,

What issue you are getting from while running the full scan, please share the error screenshot.

Kind Regards,
PremJK

bas_dsi · April 12, 2021, 2:54pm

Hi @PremJkumar I verified endpoint logs, and each time it says “scan aborted”, without more info. (and we launched 3 times, rebooting computer, removing all possible software like backup agent, anti cryptolocker, etc…) @ilgazy, @nct any way to clean the audit logs to empty the dashboard ?

PremJkumar · April 12, 2021, 4:09pm

Hi @bas_dsi,

We will create a support ticket to investigate the cause of the scan is getting aborted and will reach you if more details needed.

Kind Regards,
PremJK

nct · April 12, 2021, 4:38pm

@bas_dsi , there was a bug in earlier versions of Comodo Client Security which caused scans to be aborted, if you haven’t already upgraded the machine to 12.6, I suggest you do then rescan.

bas_dsi · April 13, 2021, 7:25am

Ok,
I did not verified but the endpoint stayed in 11.4.0.7655 version and did not updated remotely to 12.6… any advises to force upgrade ?