Leaderboard

This was in Cloud Administrator topic but should be here too Description: A new task/setting to reboot computers with a popup message warning,Detail: Add the possibility to notify user that computer will be restarted when reboot computer task is triggered and let them for example 5 minutes to save/close programs/data.

Hi, today at 11:30 a bunch of our enpoints updated and the TLS connection to our IMAP server with thunderbird stopped working. We saw that about at 14 another update came out but it isn't fixing the proken clients and we need to reinstall nod32 or create a new thunderbird profile. Are you working on an update that is going to fix the issue? Regards Giuseppe

We are aware of the problem with Windows applications and the changing path with each update. There is a plan to come with up a solution to this in long term. Also I can assure you that we value any constructive feedback or suggestion and it's discussed with product managers and developers.

solution (just tested with one of our systems) for our site: [root@vm /]# cd /var/opt/eset/esets/lib [root@vm lib]# mv em002_32.dat em002_32.dat.o [root@vm lib]# cd /opt/eset/esets/sbin/ [root@vm sbin]# ./esets_update --verbose Virus signature database has been updated successfully. ESETS Update utility +-+--------------------+------------------------+------------------------+ | | Module | Available version | Installed version | +-+--------------------+------------------------+------------------------+ |*| loader | 1076

Yes, in case of multiple commands, one have to enter delimited one-liner, as it would be done in one-line BAT file. Just a note, this will be improved in upcoming released, where multi-line commands will be possible, which should simplify such scenarios.

According to https://support.eset.com/en/news7604-eset-support-of-macos-11-big-sur, a version compatible with Big Sur that will include a firewall is planned for Dec 2020:

I had some issues configuring Active Directory integration (Kerberos etc.) with ESMC so I decided to do a write-up on what I did to get it working. This is for Ubuntu Server 18.04 but it should be applicable to other Debian based distros, adjust where required. Let's assume we have the following environment: ESMC Linux Distribution: Ubuntu Server 18.04 ESMC Hostname: esmc ESMC FQDN: esmc.test.local ESMC IP Address: 10.123.1.2 Active Directory Domain: test.local NetBIOS Domain: TEST Domain Controller: dc.test.local (10.123.1.1) ESET ESMC AD User Account: eset.esmc@test.local (ese

Yes, that was a false positive. Updates were already stopped a while ago and a fix is being prepared. It should be available within a few minutes. We apologize for the inconvenience.

Hello, Android team is currently investigating this issue with self-signed certificates. If You use self-signed certificates (ESMC generated) please fill ticket with customer care so there is more data regarding this (we will need logs from phone and mdm certificate to speed up the process). Sorry for inconvenience, M.

Thanks, quite a good idea. We will try to bring it in a service release next year.

It looks like the problem is back again. I think Is is happen after todays update at 2PM. /opt/eset/esets/sbin/esets_daemon --version /opt/eset/esets/sbin/esets_daemon (esets) 4.5.15 There is a lot of /tmp/bt.esets_daemon.* files cat bt.esets_daemon.EkR1IE signal = 11 bad addr = 0xcfc00004 /opt/eset/esets/sbin/esets_update --verbose Naruszenie ochrony pamięci (translate: Memory protection violation) Esets hung in starting loop systemctl start esets.service Job for esets.service failed because a fatal signal was delivered to the control process. See "s

Tonight I went back to the computer and found the desktop very sluggish when not simply unresponsive. Clicking on items in the taskbar would either do nothing, or open the programs extremely slowly and then the windows would not finish opening. I ended up doing a hard reboot, but just as I was releasing the power button I noticed that the ESET NOD32 Antivirus for Linux icon in the notification area looked red. After rebooting, the system works normally -- except that the ESET icon is no longer showing up in the notification area. And clicking on ESET from the Application menu does not ope

I use COX email here in Arizona, for almost 20 years. ESET since 2000. IMAP on my machines at the office. No issues at all with Endpoint until this last release. I updated to 7.3.2044 after I received the Not Compatible soon warning. As soon as I installed the current rev, I lost incoming IMAP. We use Thunderbird. Install over previous rev. Reboot and fail. Uninstall previous rev, reboot/install current rev, reboot, fail. Reinstall previous rev, IMAP works. I am not able to create a log for you as I have removed 7.3.xxx so my staff can work. Matt

Problem is, that report templates are actually also objects, that are "tied" to specific static group (= access group) and thus have limited visibility. In case of default report templates created during installation, they are configured with access group set to group "All", which means that only user which have access to "Reports & Dashboards" on group "All" will see those reports. The same applies also for other managing objects in console (policies, dynamic groups, notifications, ...). Unfortunately I cannot verify now, but there might be two solutions, where both do require some r

my solution to get it running again, looks like a bad file(from another post I think): mv /var/opt/eset/esets/lib/em002_32.dat /var/opt/eset/esets/lib/em002_32.dat.old systemctl stop esets rm -rf /tmp/*update.lock; /opt/eset/esets/sbin/esets_update --verbose systemctl restart esets systemctl status esets

You'll have to do this after every java update I'm afraid. Your steps are spot on, except you don't need any reboots. if Tomcat isn't running you just go into tomcat9w as you rightly say, then update the java path, then start tomcat service. I had to do it again on Monday.

Great to hear this this is going to be improved, I have some fairly complex PowerScript commands that I execute via the run command. For example I have commands which will: Download TeamViewer Download a config file Install TeamViewer using msiexec Email me the TeamViewer ID from the registry. Getting this to work took time, and seeing all this on a single line script is horrible to maintain :) So seeing an improved experience will be fantastic.

The last few days/weeks I've been in contact with Peter and he consulted the ESET dev team to solve my issue. We tried several things, I sent several logs and tried a patched version of the filtering part but it didn't help. Finally my issue disappeared after I removed some certificates from the 'Manage Certificates' config box in Thunderbird. This were certificates I (long ago) accepted due to self-signed certificates or test servers. Some servers I connect to now (which have now a valid certificate) had an certificate in that box (but not all). It looks like somehow something got confused by

The Run command task runs the command in the local system account so elevation is not required.

This isn't ESET's fault, it's Apple's. They are well-known for releasing updates with huge breaking changes without telling developers. One of many, many problems with that company's culture.

This is my Dynamic Group rule.

Thanks @Peter Randziak @TomasP, I have PM'd you the link to logs.

What is wrong with the Antivirus . My application is activated but I am not able to update the antivirus ? I am attaching an image which describes my problem . Also sometimes I receive an error saying that "update server not found" When will the antivirus start working properly ? I don't like to spend money for free .

Please temporarily enable debug logging verbosity both on the client and server and then send a wake-up call. If it fails, disable debug logging and upload trace logs from both the client and server.

Turn it on. It's not related to ESET, it's smartscreen that's built into the system. It doesn't usually turn off automatically so not sure what happened there.

How did you find the ESET Security Forum? Duckduckgo What OS are you running? Win10 Pro What AV are you running? Eset Nod32 Antivirus What’s an interesting fact about you? The first computer I played on was a Commodore 64

It's still there among the built-in rules and even Kbleft has those rules enabled:

Check you existing Eset firewall rule set and verify that a rule exists for C:\Program Files\ESET\ESET Security\equi.exe. If one exists, verify it is set to allow inbound and outbound traffic. Otherwise, manually create a new rule for it. Move this equi.exe rule to the bottom of existing default firewall rules. You can use the default existing ekrn.exe rule as a guide for equi.exe rule creation. I believe this should stop the equi.exe alert after a new app rule is created firewall Interactive mode.

This would be normal behavior in firewall Interactive mode if an existing app hash value changed and a previous firewall rule existed for it. However, equi.exe is Eset signed so there might be a bug there. You're going to keep getting the alert until you respond to keep existing firewall rules which I would select, or to create a new firewall rule for the app. You can also manually verify that equi.exe in C:\Program Files\ESET\ESET Security is also Eset signed indicating it is legit.

Hello, Did some more testing on my end and I think I found the bug in Eset Endpoint Antivirus anyway when managed by 1 central ESMC that applies a policy to the endpoints. We have "Enable SSL/TLS filtering" enabled by ESMC policy, unable to be changed by the endpoint local settings. We then have "Block encrypted communication utilizing the obsolete SSLv2" disabled by default on the clients, but not set by the ESMC policy. In the ESMC policy it is set to "Setting won't be set by this policy, it will be editable (unlocked) on the client". In that GUI screen, it shows the defaul

Marcos, I have already sent a log collection to Peter Randziak. Do you require another one?

Release date: November 6, 2020 ESET Enterprise Inspector 1.5 has been released. The build 1.5 is now available for download from the download page. Changelog: Added: Ability to work with rules via Public REST API (list, create, edit and delete) Added: Ability to trigger Network Isolation via Rules (only for Windows endpoints) Added: Support for full Unicode characters Added: Ability to add multiple comments to Detection, Executables, Computers, and Processes Added: Various performance improvements (e.g. faster search, purge, rules engine and other

Also has been pushed to regular update channel.

In the panel above you see client and server tasks that you've run recently or in the past. If you didn't run any task, the list would be empty. If you run a new task, it should appear in the list.

Updating these days some endpoints, noticed that a lot of computers have a WARNING/ALERT active saying that they need a restart. This alert is called: "Computers needs restart". Checked some random computers and users where shutting down every day computer but the alert/warning was still there. Checking it, uptime was 1-2 weeks too...Why? Fast Boot from Windows 10..... That's a pain in the , you can't disable it through GPO(only via Registry) and users NEVER reboot computer, they only shutdown. How I tried to workaround it? I configured a task to reboot computers Daily at 14h b

Guys run this command in an elevated command prompt on your affected machines. It downloads the missing files from Microsoft. Run SFC /SCANNOW before and after to verify it worked.

For the record, I managed to solve my Thunderbird SSL/TLS problems by keeping protocol filtering enabled, but adding the IP address of the IMAP server (a local address on my home network) to the Excluded IP addresses list, found in Advanced setup > Web and email > Protocol filtering > Excluded IP addresses. Maybe not the correct or best way to solve it, for for now, I'm good. I presume my firefox errors were a result of certificate regeneration, which I handled by following the advice above. Regards, Joakim

DISM /Online /Cleanup-Image /RestoreHealth This is what fixed the corrupt files.

*Bump* I'm still getting the same error,twice in one day Grrr. Is there any update to this problem. Colin

Did you follow the instructions at https://support.eset.com/en/kb2708? While I haven't installed it on Ubuntu 20.10 yet, I have it running on Ubuntu 20.04 TLS.

First, monitoring Win 10 individual services via Eset firewall is somewhat an effort in futility. Eset attempted that a while back in a prior release and quickly abandoned it. Hence, why all Eset default firewall rules for svchost.exe are not service specific. Why? Because there are many hidden services used by Windows that are not specifically listed or controllable via Control Panel -> Admin Tools -> Services. In regards to DoSvc, it is Win 10's Delivery Optimization service used to speed up downloading of Win Updates primarily but also used for other Microsoft apps. If Win 10 is

I belive you can delete them but don't think leaving them will cause any issues such as space etc. As you can see from the folder path each location has a slightly different version name. The problem with Windows Store apps is their folder location and I believe exe. name changes with each version number. For example is the folder name was app 1.0 the new folder might be app 1.5 and so on. As the location and so on change eset treats it like a new app and a new rule gets made.

Hi to all! I’m looking for a Wi-Fi home portable camera that’s secure and can be easily installed. If you’d have any suggestions I’d appreciate any help.

Thanks Peter. Seems to be working ok now. Had tried yesterday with incognito mode so cache/cookies shouldn't make much difference.

In most cases only domain is sent, but the whole URL can be sent as well. The URL part after ? or # is not sent. Currently the URL can be quite easily read from the request, however these days we are in the process of releasing a new functionality for the encryption of these requests. The process should be finished in November if no blocking issues emerge. The URLs are not kept at our servers at all.

I already have, and they pretty much gave me the option of hiding the GUI entirely or upgrading. I just hope the feedback received makes the decision makers behind these decisions re-think this next time.

Also available here: https://forum.eset.com/topic/25003-eset-endpoint-products-for-macos-version-692000-have-been-released/ and on the download page as well: https://www.eset.com/int/business/endpoint-security-mac/download/

Will help myself for the future: hxxp://repository.eset.com/v1/com/eset/apps/business/ees/mac/v6/6.9.200.0/ees_osx_enu.pkg.changelog.html Version 6.9.200.0 Improved: Performance improvements of Real-time protection scanner in certain circumstances Fixed: Rare crash of scanner under special conditions Fixed: 100% CPU load of esets_proxy service during communication with ESET Enterprise Inspector Fixed: Web and Email protection alerts were not displayed in management console Fixed: Saving proxy port number in application preferences did not work

Release Date: July 30, 2020 ESET Endpoint Antivirus and ESET Endpoint Security for macOS 6.9.200.0 have been released and are available to download. Changelog: Version 6.9.200.0 Improved: Performance improvements of Real-time protection scanner under certain circumstances Fixed: Rare crash of a scanner under special conditions Fixed: 100% CPU load of esets_proxy service during communication with ESET Enterprise Inspector Fixed: Web and Email protection alerts were not display

hxxp://repository.eset.com/v1/com/eset/apps/business/ees/mac/v6/6.9.200.0/ees_osx_enu.pkg.changelog.html