Jump to content

Leaderboard

Popular Content

Showing content with the most kudos since 11/01/2020 in all areas

  1. This was in Cloud Administrator topic but should be here too Description: A new task/setting to reboot computers with a popup message warning,Detail: Add the possibility to notify user that computer will be restarted when reboot computer task is triggered and let them for example 5 minutes to save/close programs/data.
    3 points
  2. Hi, today at 11:30 a bunch of our enpoints updated and the TLS connection to our IMAP server with thunderbird stopped working. We saw that about at 14 another update came out but it isn't fixing the proken clients and we need to reinstall nod32 or create a new thunderbird profile. Are you working on an update that is going to fix the issue? Regards Giuseppe
    2 points
  3. Marcos

    Updated programs - Keep Rules

    We are aware of the problem with Windows applications and the changing path with each update. There is a plan to come with up a solution to this in long term. Also I can assure you that we value any constructive feedback or suggestion and it's discussed with product managers and developers.
    2 points
  4. solution (just tested with one of our systems) for our site: [root@vm /]# cd /var/opt/eset/esets/lib [root@vm lib]# mv em002_32.dat em002_32.dat.o [root@vm lib]# cd /opt/eset/esets/sbin/ [root@vm sbin]# ./esets_update --verbose Virus signature database has been updated successfully. ESETS Update utility +-+--------------------+------------------------+------------------------+ | | Module | Available version | Installed version | +-+--------------------+------------------------+------------------------+ |*| loader | 1076
    2 points
  5. Yes, in case of multiple commands, one have to enter delimited one-liner, as it would be done in one-line BAT file. Just a note, this will be improved in upcoming released, where multi-line commands will be possible, which should simplify such scenarios.
    2 points
  6. According to https://support.eset.com/en/news7604-eset-support-of-macos-11-big-sur, a version compatible with Big Sur that will include a firewall is planned for Dec 2020:
    2 points
  7. I had some issues configuring Active Directory integration (Kerberos etc.) with ESMC so I decided to do a write-up on what I did to get it working. This is for Ubuntu Server 18.04 but it should be applicable to other Debian based distros, adjust where required. Let's assume we have the following environment: ESMC Linux Distribution: Ubuntu Server 18.04 ESMC Hostname: esmc ESMC FQDN: esmc.test.local ESMC IP Address: 10.123.1.2 Active Directory Domain: test.local NetBIOS Domain: TEST Domain Controller: dc.test.local (10.123.1.1) ESET ESMC AD User Account: eset.esmc@test.local (ese
    2 points
  8. Yes, that was a false positive. Updates were already stopped a while ago and a fix is being prepared. It should be available within a few minutes. We apologize for the inconvenience.
    2 points
  9. Mirek S.

    MDM and weak certificate

    Hello, Android team is currently investigating this issue with self-signed certificates. If You use self-signed certificates (ESMC generated) please fill ticket with customer care so there is more data regarding this (we will need logs from phone and mdm certificate to speed up the process). Sorry for inconvenience, M.
    2 points
  10. Thanks, quite a good idea. We will try to bring it in a service release next year.
    2 points
  11. The FP should be already resolved. You can enforce update of the blacklist by rebooting the machine.
    1 point
  12. Same here. One of the applications I use for a long time obviously tries to validate a letsencrypt certificate via OCSP. Looks like a false entry has made it to the internal ESET blacklist.
    1 point
  13. You received a communication error for servers 38.90.226.21-38.90.226.25, e.g.: Sending requests to host h5-ars05-v.eset.com (38.90.226.25). Direct DNS request, UDP protocol, port 53, A record: response 127.0.4.210, TTL 120 Direct DNS request, UDP protocol, port 53, TXT record: response s:2130707666, TTL 120 Direct DNS request, TCP protocol, port 53, A record: DirectComm: Timeout occurred after (12000)ms on fd(476) reading(0) B DirectComm: Failed to receive direct response: -1 Sending direct DNS request has failed. Direct DNS request, UDP protocol, port 53535, A record: Dir
    1 point
  14. It looks like the problem is back again. I think Is is happen after todays update at 2PM. /opt/eset/esets/sbin/esets_daemon --version /opt/eset/esets/sbin/esets_daemon (esets) 4.5.15 There is a lot of /tmp/bt.esets_daemon.* files cat bt.esets_daemon.EkR1IE signal = 11 bad addr = 0xcfc00004 /opt/eset/esets/sbin/esets_update --verbose Naruszenie ochrony pamięci (translate: Memory protection violation) Esets hung in starting loop systemctl start esets.service Job for esets.service failed because a fatal signal was delivered to the control process. See "s
    1 point
  15. Hello everybody, as the topic title says I have the following problem: I use Opera as my main browser and have the firewall set to interactive mode (which I won't change) Unfortunately, Opera changes the path containing the executable dynamically with every update. example folder structure: c:\Program Files\Opera\65.0.3467.72\opera.exe c:\Program Files\Opera\65.0.3467.72\opera_autoupdate.exe c:\Program Files\Opera\65.0.3467.72\opera_crashreporter.exe c:\Program Files\Opera\65.0.3467.78\opera.exe c:\Program Files\Opera\65.0.3467.78\opera_autoupdate.exe c:\Program Files\
    1 point
  16. Please read https://forum.eset.com/topic/26355-thunderbird-7843-email-fetching-problem/ for troubleshooting tips. I'd recommend to start with changing the update channel type to pre-release.
    1 point
  17. Hard to say what went on in this device in the week or so since this malware was detected. From MBAM's findings to date, it appears to be coin mining related. But who knows if a backdoor or more malware, spyware, etc. were also installed in the interim? If it were my device, I would indeed reformat and reinstall Win 10 20H2.
    1 point
  18. Marcos

    Eternal Blue checker help?

    I'd suggest using Procmon to find out if tool gets access denied on the file. Did you run the tool as an administrator?
    1 point
  19. my solution to get it running again, looks like a bad file(from another post I think): mv /var/opt/eset/esets/lib/em002_32.dat /var/opt/eset/esets/lib/em002_32.dat.old systemctl stop esets rm -rf /tmp/*update.lock; /opt/eset/esets/sbin/esets_update --verbose systemctl restart esets systemctl status esets
    1 point
  20. There is also the rootkit possibility. Microsoft has a nice diagram on how those load and can bypass/disable anti-virus:
    1 point
  21. You'll have to do this after every java update I'm afraid. Your steps are spot on, except you don't need any reboots. if Tomcat isn't running you just go into tomcat9w as you rightly say, then update the java path, then start tomcat service. I had to do it again on Monday.
    1 point
  22. Great to hear this this is going to be improved, I have some fairly complex PowerScript commands that I execute via the run command. For example I have commands which will: Download TeamViewer Download a config file Install TeamViewer using msiexec Email me the TeamViewer ID from the registry. Getting this to work took time, and seeing all this on a single line script is horrible to maintain :) So seeing an improved experience will be fantastic.
    1 point
  23. The last few days/weeks I've been in contact with Peter and he consulted the ESET dev team to solve my issue. We tried several things, I sent several logs and tried a patched version of the filtering part but it didn't help. Finally my issue disappeared after I removed some certificates from the 'Manage Certificates' config box in Thunderbird. This were certificates I (long ago) accepted due to self-signed certificates or test servers. Some servers I connect to now (which have now a valid certificate) had an certificate in that box (but not all). It looks like somehow something got confused by
    1 point
  24. The ultimate solution will be a reworked add-on which is planned for Endpoint 8.1. It's basically ready, there are just some minor bugs that need to be sorted out.
    1 point
  25. First, here's a write-up on the feature: https://www.askvg.com/tip-enable-https-only-mode-for-websites-in-mozilla-firefox/ Next, I enabled the feature in Firefox. There is no problem with accessing my bank's web site if I open B&PP via desktop icon. However if I try to access my bank's web site via a normal Firefox browser session, I get the same Eset help web page redirection as described. Of note is B&PP uses a separate Firefox profile than the one used in normal Firefox mode. So I also set; dom.security.https_only_mode to true in that profile. Still a no go
    1 point
  26. Yes as I mentioned earlier, it should be fixed in the upcoming 3.0.6 release of the extensions. I'm checking the planned release date with the guy responsible... Peter
    1 point
  27. @davidovitch Note that Windows Security Center service is delayed start service. Until it starts we cannot report anything as there would be bunch of errors. Can you please share screenshot of such alert?
    1 point
  28. @Peter Randziak This appears to be resolved, turns out I missed out on some configuration in the hosts file. Thank you to @tomasS for the one-on-one assistance with this. I'll try to write-up a How To soon on how I configured this all so if anyone else is configuring this on a Linux component (non-VA) install, they'll avoid some of the mistakes I've made.
    1 point
  29. It would be great to have a "Repair" task for any ESET product to be run from ESMC. I have seen many problems that may be easy fixed with this. If there is a local endpoint repair option, there also should be available on tasks in ESMC for that same purpose. I would also be great also to add to this "Repair" process (I don't know if it already done this) to initialize all ESET client databases and download them again from the Internet or ESMC or proxy (it could also be an option inside the repair task).
    1 point
  30. Please temporarily enable debug logging verbosity both on the client and server and then send a wake-up call. If it fails, disable debug logging and upload trace logs from both the client and server.
    1 point
  31. Turn it on. It's not related to ESET, it's smartscreen that's built into the system. It doesn't usually turn off automatically so not sure what happened there.
    1 point
  32. Next time the alert appears, click on the "Approve" tab.
    1 point
  33. It's still there among the built-in rules and even Kbleft has those rules enabled:
    1 point
  34. @tomasSWill sent unredacted log to you via direct message.
    1 point
  35. Also has been pushed to regular update channel.
    1 point
  36. Hello @Staj I am sorry for your inconvenience. The winbind package is used by ESMC server only as a backup solution. By default, the AD is synchronized using kerberos (properly configured) and ldapsearch packages, which are in the prerequisites list you mentioned. Usually this kind of error happens, when Web Console > Server Settings > Advanced Settings > Active Directory is not filled properly. You need to enter a read-only account and host name. Container is optional.
    1 point
  37. Updating these days some endpoints, noticed that a lot of computers have a WARNING/ALERT active saying that they need a restart. This alert is called: "Computers needs restart". Checked some random computers and users where shutting down every day computer but the alert/warning was still there. Checking it, uptime was 1-2 weeks too...Why? Fast Boot from Windows 10..... That's a pain in the , you can't disable it through GPO(only via Registry) and users NEVER reboot computer, they only shutdown. How I tried to workaround it? I configured a task to reboot computers Daily at 14h b
    1 point
  38. Marcos

    ESet new license rollout

    Has your license key actually changed? If not, you won't have to re-activate clients with the license key if it's same as before. If it has changed, add the new license key to EBA (eba.eset.com) and then send a product activation task using the new license to clients from ESMC.
    1 point
  39. DISM /Online /Cleanup-Image /RestoreHealth This is what fixed the corrupt files.
    1 point
  40. Hello everyone, only that I understand correctly: Nothing needs to be done on the company side because you automatically apply the fix to your customers. Or? Otherwise, I would be happy to receive understandable instructions on what exactly has to be done. Many thanks
    1 point
  41. Please refer to https://support.eset.com/en/kb332 for a list of addresses used by ESET products.
    1 point
  42. Hello, unfortunately, this is currently not possible in a way you are seeking for. If customer adds his license to EBA account, the only way for you is to have a dedicated login (email address) to every one of such EBA accounts. We are currently analyzing / designing a solution, that will allow reseller management / visibility into the customer´s EBA accounts, and also connected ECA instances, however it will take some time till this is developed. Internal reference: IDEA-1355
    1 point
  43. *Bump* I'm still getting the same error,twice in one day Grrr. Is there any update to this problem. Colin
    1 point
  44. Marcos

    Ubuntu 20.10

    Did you follow the instructions at https://support.eset.com/en/kb2708? While I haven't installed it on Ubuntu 20.10 yet, I have it running on Ubuntu 20.04 TLS.
    1 point
  45. Hi Marcos, Thank you for your reply but I think you've missed my point. The guide you suggest shows you how to import either json or unprotected xml files, neither of which were the standard day to day recommended backup method for V2, which was protected .spdb files - you cannot import those. Had I been warned of the incompatibility prior to the system upgrading I could've saved an xml file but by time that became apparent it was too late. I did contact customer service regarding this and queried how a .spdb file could be converted but after an initial response pointing me to a simila
    1 point
  46. I belive you can delete them but don't think leaving them will cause any issues such as space etc. As you can see from the folder path each location has a slightly different version name. The problem with Windows Store apps is their folder location and I believe exe. name changes with each version number. For example is the folder name was app 1.0 the new folder might be app 1.5 and so on. As the location and so on change eset treats it like a new app and a new rule gets made.
    1 point
  47. Will help myself for the future: hxxp://repository.eset.com/v1/com/eset/apps/business/ees/mac/v6/6.9.200.0/ees_osx_enu.pkg.changelog.html Version 6.9.200.0 Improved: Performance improvements of Real-time protection scanner in certain circumstances Fixed: Rare crash of scanner under special conditions Fixed: 100% CPU load of esets_proxy service during communication with ESET Enterprise Inspector Fixed: Web and Email protection alerts were not displayed in management console Fixed: Saving proxy port number in application preferences did not work
    1 point
  48. Release Date: July 30, 2020 ESET Endpoint Antivirus and ESET Endpoint Security for macOS 6.9.200.0 have been released and are available to download. Changelog: Version 6.9.200.0 Improved: Performance improvements of Real-time protection scanner under certain circumstances Fixed: Rare crash of a scanner under special conditions Fixed: 100% CPU load of esets_proxy service during communication with ESET Enterprise Inspector Fixed: Web and Email protection alerts were not display
    1 point
  49. Thx. That is. Tomcat service doesn't even exist after the update. What i did... Just go to tomcat bin folder (in my case C:\Program Files\Apache Software Foundation\apache-tomcat-7.0.92\bin) open cmd with admin privileges and type after that win+r type services.msc and start tomcat service. (set it to automatically) And voalá... Thank you very much!
    1 point
  50. Description: Policy revision Detail: It would be very welcome feature if policy had revision tab, so we can see what has changed over time. This revision tab would, if implemented, allow us to see all settings in tree view. At the moment we have to go to policy and drill down entire policy to get a look what settings we had in previous policy. Maybe this has already been requested in different form, like I had previously in this topic
    1 point
  • Newsletter

    Want to keep up to date with all our latest news and information?
    Sign Up
×
×
  • Create New...