Jump to content


Popular Content

Showing content with the most kudos since 04/02/2019 in all areas

  1. 4 points
    There will be a fix for the issue in both Endpoint and ESET NOD32 for Linux desktop according to the latest news.
  2. 3 points

    ESET Memories

    Cherishing memories
  3. 3 points
    I have a local account. I do not use online anytihng for this win10 debacle. I have SHUTUP switch off almost everything. I have no one drive, I have no microsoft accounts. microspasm have, over the years, clearly demonstrated their mistrust, disgust and lack of customer service for the very people who made them the global garbage patch they now are. As for a Linux recommendation, clearly, the front runner for new folk is Ubuntu. The GUI has evolved vastly over the years, it is stable, useful and easy to get to grips with. The standard desktop version contains all the workable software you would likely need. Installing more software is a doddle and there is a world of passionate, dedicated expert-like folk who will gladly offer any free assistance. There is NO activating online. There is (almost) no snooping - firefox, etc will have crash report info sent off but these things can easily be disabled. Almost everything you could want will be available as Open Source or GPL, etc so no worries about purchasing things. Virtualisation runs far better on the Linux platform than windows via KVM/QEMU. The only caveat that I have encountered is that cut/paste between host/guest and shared folders are a bit trickier to set up than would be the case with a windows setup. However, if you don't want a more hardware-centric virtualisation then you can still employ virtualbox which operates as well as virtualbox does anywhere. Software development tools do NOT require 10Gb or more of install as one gets with visual studio. By the same token, no registration is required such as microspasm force one into so they can spy on more of your activities. If one is a non-gaming user, Linux is ideal. If one is a business user, it could also be ideal but for the fact that the bulk of businesses use BackOffice tools - especially exchange/outlook; the latter of which has been altered so it is not so user-friendly any longer. I was weaned on UNIX (SYSV) and have been a ms/windows tech-type since MSDOS 3.x and windows 3. With every subsequent release, I have disliked windows less and UNIX-like more. The day windows is history will be a glorious day for the whole world! P.S. Once you feel confident enough you can even recompile your Linux kernel to streamline it to your tastes and speed-up your boot times. Personally, I have not recompiled a kernel since using Slakware but it is fun to try and would take far less time today than the 4-7 hours it used to take using pre-pentium intel chips back in 1993.
  4. 3 points
    Update (Feb 10, 16:30 CET): 1, A fix tool that will replace ekrn.exe with a fixed version will be ready within today (Feb 10). The tool will need to be run on machines with affected ESET Security products that are malfunctioning. No restart should be needed to get the product work. The tool should work for affected Endpoint v5 as well as v6.5 products also on Windows XP and Windows Server 2003. 2, If you have an affected version of the product and it still works alright, do not restart the computer yet. Tomorrow (Feb 11) we'll be releasing Antivirus and antispyware module which will patch ekrn to fix the issue. 3, We should have 6.5 installers with a fixed ekrn.exe ready by tomorrow and will replace them in the repository too. 4, After remedying the issue, please consider upgrading to the latest Endpoint v7.2 wherever possible. While Endpoint v5 and 6.5 products will work until they reach EOL, we strongly encourage you to use the latest version which not only addresses bugs and issues from older versions but also brings substantially better protection against current threats.
  5. 3 points
    Hi, I just published a brief guide to ESMC implementation in Proxmox : ESET Security Management Center 7 deployment in Proxmox VE I hope it is useful. Regards
  6. 3 points
    As I wrote, there will be a hotfix of ESET NOD32 for Linux desktop that will address the issue.
  7. 3 points
    just my reply : https://www.youtube.com/watch?v=Uh7l8dx-h8M
  8. 3 points
    The ESET Knowledgebase YouTube Channel celebrates its 10-year anniversary today! https://www.youtube.com/user/ESETKnowledgebase/community Check out the infographic for our lifetime YouTube statistics for the channel. The ESET Knowledgebase channel includes step-by-step video tutorials demonstrating the key processes and features of our ESET products, from ESET NOD32 Antivirus and ESET Internet Security to business products like ESET Security Management Center. In addition, our channel is yet another way for our customers to reach us with feedback and questions. We make every effort to respond to support-related comments and yes, we do take video suggestions!
  9. 3 points
    False positive reports To submit a possible False Positive see Submit a suspicious website / potential false positive / potential miscategorization by Parental control to ESET for analysis when you wish to submit via email or use Submit sample for analysis function from the program GUI of ESET product installed on your computer. Whitelisting ESET does provide a whitelisting service for software vendors by which you can submit your software to minimize the chances of false positives, e.g., when your software is being downloaded. This service is intended as preventive measure for trusted and undetected applications to minimize risk of future false positives. Whitelisting service is not a channel for removing existing detections, disputes or solving other unrelated problems. If you want to register your software for whitelisting, please follow the instructions in the KB article How do I whitelist my software with ESET? Requirement for False positive submissions When submitting false positive file(s) via email or via program GUI, it is necessary to send copy of falsely detected file(s) as well as description of the file. I will explain what information is needed and why it is important. 1) Name of the legitimate application the file belongs to. When submitting false positives you must be able to identify what is the name of application that is being falsely detected. No-name false positive reports (when information about the application name is missing) are harder/slower to examine and in many cases indicate correctly detected malware rather then false positive. Example of correctly provided information: “This file belongs to VLC media player 3.0.6.” When you provide the specific version number, it helps. Example how not to submit false positives: “I don’t know what it is and why I have it on my computer but I think it is a false positive.” If you don’t know what the file is, don’t report it as false positive. 2) Name of the application’s author, developer, vendor or website where you downloaded the software Each legitimate software have known author or there is known company who developed it. There is known source/origin where the software can be obtained and you can learn information about it. This information is needed in investigation process. Researchers need to verify whether the software is safe and they may need the full installer to evaluate the software properly. Researchers may need to investigate whether other versions of the same software were affected by false positive or not. It is important to know the source/website where you downloaded the software because some download websites provide different installers than original vendors. 3) Application's purpose Let the researchers know what the application is supposed to do, what value does it offer to you. This information is usually available on vendor’s website but there are many old applications where the website is no longer available, or software was distributed only on CD-ROM/DVD, or the software is custom/in-house developed and the description is not generally available. Examples how of application’s purpose: This is a picture viewer, video convertor, movie player, communication software, printing program, database program, web browser, accounting software, computer game, tool I use for programming, etc. Don’t hesitate to provide any additional information you deem important. You may add the specific detection name you saw when detection occurred. In case some specific circumstances are needed to reproduce the problem, tell it to the researchers how (For example it may happen that the file itself is not detected but it downloads/creates other files that trigger detection). You may submit false positives via email or directly from ESET product via Submit sample for analysis function. In order to use the function open GUI of ESET Internet Security, you will find following icon in Tools and clicking More Tools: Please select “False positive file” option and attach the file you want to submit. Please provide all necessary information (as described above) researchers need to process your false positive submission. Information you provide indeed significantly helps ESET laboratories in the identification and processing of samples. Thank you for your submission!
  10. 2 points
  11. 2 points
    Peter Randziak

    ESET cloud Administrator

    Hello @Christoforos The team responsible was able to determine the root cause of the issue. Fix will be prepared, tested on test environment and deployed to production. Consoles has been restarted to resolve the issue until permanently fixed, so you should be able to access your ECA right now. We apologize for the inconvenience caused, Peter
  12. 2 points
    ESET has been protecting users worldwide for decades already and have always provided state-of-the-art protection. While it was always our digital worlds that ESET has been protecting, now with the epidemic of the SARS-CoV-2 coronavirus the need to protect also users themselves became inevitable. Besides supporting various scientific and charity events, we are now creating a fund to support effective diagnosis of SARS-CoV-2 coronavirus, giving 300,000 EUR to support the purchase of a diagnostic system capable of analyzing 4000 samples per day. By purchasing ESET's products you can be sure that you also support science and charity. Machine translation: https://translate.google.com/translate?sl=sk&tl=en&u=https%3A%2F%2Fwww.eset.com%2Fsk%2Fo-nas%2Fpress-centrum%2Feset-tlacove-spravy%2Fspolocnost-eset-vytvara-fond-na-podporu-ucinnej-diagnostiky-koronavirusu-sars-cov-2%2F Recognizing the seriousness of the SARS-CoV-2 coronavirus spread, ESET has decided to engage in the fight against the epidemic in Slovakia. The ESET Foundation has therefore set up a COVID-19 Effective Diagnosis and Prevention Fund, to which ESET will contribute EUR 300,000. The amount will be increased later if necessary. The aim of the newly established fund is to provide, in the first phase, the necessary equipment for improving the quality of diagnostics and introducing comprehensive testing in Slovakia. Since its inception, ESET has dedicated itself to the diagnosis of computer viruses and is symbolic to support the diagnosis of biological viruses in this situation. Even at such moments, the importance of science, which can make a significant contribution to solving the situation, has been shown. ESET Foundation supports science and research and is the organizer of the ESET Science Award. “We have set up a fund to support the effective diagnosis and prevention of coronavirus because we believe that only a systematic scientific approach will help us manage this epidemic. At the same time, it is essential that we think ahead today and take steps to relaunch the economy. General and systematic testing of the population will help in returning the employees to the work process and thus also help the Slovak economy, ” explains Richard Marko, CEO of ESET. Through the Fund, ESET will support the purchase of high-performance diagnostic equipment, the development of systems for more efficient online diagnostics, or contribute to the cost of operating or collecting and transporting samples. Public and private medical diagnostic institutions and laboratories operating in Slovakia that are authorized to diagnose this type or to take and transport SARS-CoV-2 related samples may receive financial support. These institutions can contact the ESET Foundation at nadacia[at]eset.sk . The expert guarantor in the evaluation of the use of the fund's resources is the recognized Slovak chemist Robert Mistrík. “After the first discussions, we are considering co-financing the purchase of the Roche cobas 8800 System, or co-financing its operation. This device is able to do real-time RT-PCR tests at lower unit cost and shorter time in automatic mode. It can evaluate up to 4,000 samples in a single day. We will look for a partner to operate this device. Of course, the fund will also be open to other solutions supporting its goal, ” concludes Robert Mistrík, the fund's expert guarantor. More information about the Fund for the Support of Effective Diagnosis and Prevention of COVID-19 can be found at www.nadaciaeset.sk .
  13. 2 points

    ESET Memories

    Just some photos I found on the internet that can bring some good moments and make your white hair shine brighter. Hmmm , I used to love that GUI ! , so simple and basic but powerful.
  14. 2 points

    ESET Memories

    AMON is the former name of the real-time protection module. We still call it internally that way and also real-time protection driver in the latest v13 is called eamonm.sys.
  15. 2 points
    Thanks, it worked. @MartinK It's really counterintuitive to put it there. But, whatever, you can leave it as is, but when someone tries to update Management Agent from "Dashboard -> ESET applications -> Outdated applications" (or from any other location applicable) then ESMC should create task "Upgrade Security Management Server Components" instead of saying "No ESET products, which can be updated automatically, have been found".
  16. 2 points
    Microsoft are intent on relegating the desktop PC into a -poor child of their crappy surface tablet. There is little or no point in promoting all this geoloating twaddle on a PC which is, for the most part, quite static in its movements. Laptops are not that mobile really, except for business types. Windows 10 is dire, intrusive, bland. If Linux could offer me better gaming options I'd blow windows out the door and not waste a minute more on it.
  17. 2 points
    Where the confusion kicks in on Eset licensing options is they offer a multi-device license option: https://www.eset.com/us/home/multi-device-security/ . This license allows you to install Eset on any device where a supported product version exists. To add to the confusion depending on where you reside, Eset marketing in that country might offer a multiple pack option; usually up to 5 devices. So the result is a multi-device and multi-license subscription which allows any Eset product to be installed on up to 5 supported devices. The key to keeping all this straight is that Eset products have built-in restrictions; e.g. NOD32 has an option for Windows and Linux. The other Eset desktop products only support Windows. And obviously, the Eset mobile version is for Smart phones.
  18. 2 points
    We have recently discovered a problem sending customer care requests from the built-in form in ESET NOD32 for Linux desktop. I would recommend contacting ESET LLL via the web form or phone. We are working on a resolution to make the internal form work. We apologize for the inconvenience.
  19. 2 points
    Tonight (CET) we are going to publish links to fixes for Endpoint v5. A bit later we plan to release also a fix that will be smaller in size and will download the appropriate installed of the latest v5 Endpoint instead of having it bundled.
  20. 2 points
    Agreed - we are also seeing this on multiple English systems
  21. 2 points
    @Marcos What about the endpoints that request a username and password when you go to advanced settings after applying the patch? Also any update if we NEED to update after applying the 6.5 patch? Like 10000+ workstations updaten without any era would take a few months.
  22. 2 points
    On machines that have been restarted and where ESET doesn't work (ie. neither update does), it will be necessary to run the fix tool that we are testing right now. We'll announce it here when ready.
  23. 2 points

    ESET NOD32 Google Chrome 79 crashes

    @Kirill Licenses for ESET products are not sold for a specific product version. Meaning, that with your current license you will be eligible to use the new V7 as well. Linux Endpoint product is the last one running the old version of architecture / scanning core, and it will be updated to V7 soon. We are already running a beta program (available here), V7 should not have this issue at all.
  24. 2 points
    The current up-to-date version for desktop edition is the v4 Endpoint edition v7 is running as BETA currently , once it goes stable I believe they will start looking at building the v7 for desktop. The fix that Marcos talked about would be probably a small fix (hotfix) that will solve the issue with browsers and that's it , not a major upgrade.
  25. 2 points

    MDM certificate

    Hi, You should create a full chain certificate which contains SSL cert, intermediate, root and private key. - Download XCA and install it. - Download OpenSSL and install it. 1.) Create a empty file (C:\temp\cert-chain.txt) on your PC and past the following inside it: -----BEGIN CERTIFICATE----- (Your Primary SSL certificate from C:\temp\your_domain_name.crt) -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- (Your Intermediate certificate from C:\temp\TheIntermediateCA.crt) -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- (Your Root certificate part from C:\temp\TheTrustedRoot.crt) -----END CERTIFICATE----- 2.) Now replace the content inside the brackets with your certificates (which you can export via XCA; PEM txt format). The order above is VERY important so do not mix it! 2.) Export the private key (unencrypted in text format) with XCA from your certificate and store it inside C:\temp\server.pemkey 3.) Now merge everything together as pkcs12 (filename extension for PKCS #12 files is .p12 or .pfx). To do that open a CMD (run as admin) and perform: cd C:\OpenSSL-Win32 openssl pkcs12 -export -inkey C:\temp\server.pemkey -in C:\temp\cert-chain.txt -password pass:ABCD -out C:\temp\certificate(chain_and_key).pfx 4.) Your PFX file is now ready to be used.
  26. 2 points
    Description: Color code failing tasks Detail: The server used to color code the tasks that are failing. I'm running the latest ESMC, and now, that doesn't happen, and I have a hard time figuring out which tasks are failing. Is there a way to color code it again, or where can I see it? All I get is a generic email saying: "At least one client task has invalid configuration and therefore will fail."
  27. 2 points

    Future changes to ESET web portals

    Have full control over devices connected to the account, like remote updates, remote settings, remote scanning etc.
  28. 2 points

    Future changes to ESET web portals

    Description: Products updateDetail: Verify if the installed products are up to date
  29. 2 points

    Version 1.0.0


    Diagnostic.Agent.7.1_91.0_x64.zip This file should be downloaded and used only if instructed so by customer care staff.
  30. 1 point

    I hav centos 8 report problem

    Unfortunately I am not able to provide any official recommendation, but any chance you tried third-party repositories? For example this one seems to provide QtWebkit based on Ot4: https://centos.pkgs.org/8/getpagespeed-x86_64/qtwebkit-2.3.4-23.el8.x86_64.rpm.html
  31. 1 point

    Latest update BSOD.

    FYI in regards to anyone using Win 10 Insider builds: https://www.onmsft.com/news/kaspersky-declines-support-windows-insider-builds-windows-10 To the above, I add that just because Eset runs w/o issue on a Win 10 Insider build does not imply it is working properly. In other words, it is "user beware" in this regard.
  32. 1 point

    ESET Memories

    I gather amon is just a part of eset? Interesting to see how the GUI and GUIs in general have changed over the years
  33. 1 point

    Blue Screen after uninstalling Nod32

    @Marcos if the problem is in the Registry as you seem to be indicating, how about restoring the registry from its backup? This article is for Win 10 but the author indicates it should work for Win 7: https://pureinfotech.com/restore-registry-backup-windows-10/ Further confirmed in this Microsoft TechNet discussion: -EDIT and Important- Ignore the Repair option given below. Repair on Win 7 is anything but straightforward as I recollect. The installation media version must match what ver. of Win 7 you have installed; e.g. SP2 media if Win 7 SP2 is installed.. https://social.technet.microsoft.com/Forums/windows/en-US/50c51ee9-f25a-4286-9c8c-657b1c6f9868/recovering-windows-7-registry-hivesfiles
  34. 1 point

    emails from ESET

    It's a genuine email that you would receive for instance if your license was registered to a seller's email address and another user with the ESET license registered to the same email address was attempting to add it to the license manager. Please provide the public ID of your license so that I can check it out.
  35. 1 point


    Also checkout this reg key: HKCU:\Software\AppDataLow\Software\Microsoft\D4062752-23C4-26DB-4D48-07BAD1FC2B8E .This is what the PowerShell script was using. Have a feeling the "D4062752-23C4-26DB-4D48-07BAD1FC2B8E" sub-key has to go along with possibly the actual D4062752-23C4-26DB-4D48-07BAD1FC2B8E key itself.
  36. 1 point

    Hips Configuration

    One other important point in regards to ransomware protection and any other malware that deploys scripts. Eset firewall rules need to be created to monitor outbound network traffic done by scripts and other commonly abused processes used by malware developers. Additionally, these firewall rules will serve as a backup mechanism to any like HIPS created rules in the event malware was able to bypass those. A very common technique employed by malware developers to use scripts to connect to their remote C&C servers for the purpose of downloading their malicious payload executable or to stage a remote execution attack. How to create these firewall rules are given here: https://support.eset.com/en/kb6132-configure-firewall-rules-for-eset-endpoint-security-to-protect-against-ransomware . Finally, Eset best practices recommendations should be reviewed for additional ways to mitigate ransomware: https://support.eset.com/en/kb3433-best-practices-to-protect-against-filecoder-ransomware-malware .
  37. 1 point
    Ubuntu is good for starting and also for advanced , but for GUIs take a look at : Ubuntu KDE Ubuntu MATE Ubuntu GNOME LinuxMINT Cinammon looks a bit like W7 if you are interested For me I use MATE , It's great. You can also download the LTS edition , which will make your upgrades every few years(major operating system upgrade) , and also LTS is considered to be more stable , but the newer versions have newer features but I would go with LTS for sure Put it on a USB and run it as a live image , and test the linux as much as you want , when you will restart you will go back to your Windows normally , so that way you can give Linux a try , or fire it up in a virtual machine
  38. 1 point
    It would be so much simpler if Eset would just ask questions before you buy. Nothing crazy, just ask about OS, how many devices, what level of protection, etc. That way, buyers wouldn't do something stupid, like buy the wrong software. *ahem* The irony to me is that the experience I've had resembles how Microsoft makes simple things like finding information on correcting problems -- or even sometimes products you want to buy (!) -- difficult because they put the information somewhere stupid, and/or forgot to tell the user where to find it. Yet, my experience with Eset's Windows and Android products over the better part of a decade has been completely drama-free. Thank you, by the way.
  39. 1 point
    This process worked for me on all servers that I needed to run it on. I didn't have to do a 3rd reboot thankfully.
  40. 1 point
    Looks like the machine was not rebooted after enabling advanced network protection logging. Anyways, the root cause of the errors is clear. For some reason the old driver epfwwfpr.sys was not removed during upgrade for an unknown reason. Please run the following command as an administrator and reboot the server: "sc delete epfwwfpr" Reinstallation of EFSW should not be necessary, however, should an error still be reported after the reboot try uninstalling EFSW and installing it from scratch.
  41. 1 point
    A colleague testet this fix with following server versions: Server 2008, 2012, 2016, 2019 2008 with 14 (6.5.12014.x) => FAILED 2019 with 18 (6.5.12018.x) => OK 2012 R2 with 14 (6.5.12014.x) => FAILED 2016 with 14 (6.5.12014.x) => FAILED 2016 with 18 (6.5.12014.x) => OK List of combinations OS Eset (6.5.12014.x) Eset (6.5.12018.x) 2008 R2 not working we don't have this combination 2012 R2 not working we don't have this combination 2016 not working works 2019 we don't have this combination works
  42. 1 point
  43. 1 point
    I would recommend contacting your local distributor regarding licensing. Looking at https://support.eset.com/en/kb3104-eset-business-bundles-and-packsfaq, even Endpoint protection standard includes a license for ESET File Security, probably for 1 server.
  44. 1 point
  45. 1 point
    Hi! Here same problem as @vscience … anyone solved? at 1st i also thinked about a Platform problem but seems not… same problem changing cable, ethernet adapter etc... ESET Internet Security installed (latest) X570-E Gaming - Ryzen 3900X NICs: Intel I211 Gigabit + Realtek 2.5GbE If a run a speed test with iperf 3 i Always have full speed (but this could be due to protocol compression or other…) instead if i simply transfer something with SMB protocol or navigate on internet my connection drop under 10-20 Mbps after a random amount of time, resetting the NIC solve the problem only for a while
  46. 1 point
    Check if port 443 is open on the WAN side of the router. You can do this at various web sites such as Gibson Research Shields Up web site: https://www.grc.com/shieldsup Note; It is impossible to determine what your Eset posted screen shots are stating since there are not in English.
  47. 1 point
    You are lying here. Yes, NOD32 maybe does not specifically affect browsers. But to intercepting launching viruses you installing intercepting library affecting all applications. Even which launched via systemd. Error SIGILL (Illegal instruction from Chrome output in terminal) usually means that application was compiled for newer CPU which have instructions which you CPU does not have. In past Chrome already started to SSE2 instructions which was not on Pentium 4 and some Atoms CPUs. But in this particular case reason is different since after uninstalling ESET Chrome 79 starts working normally. Maybe during injection your code in Chrome (from library libesets_pac.so ) something leads Chrome (or maybe ESET) to execute illegal instruction. Besides Chrome CUPS subsystem (printers) not working with ESET. I don't know since when. In logs both says "ERROR: ld.so: object 'libesets_pac.so' from /etc/ld.so.preload cannot be preloaded (cannot open shared object file): ignored." Maybe because of NOD32 unable to inject libesets_pac.so code using LD_PRELOAD in Chrome and inject successfully some other library then it leads to inconsistent behavior. Visually Chrome 79 with ESET installed blinking randomly with some freezes. Chrome uses dedicated processes for rendering pages which only "streaming" rendered content to main process with UI for presenting to user. Maybe Chrome 79 using some new IPC methods to transfer rendered content which NOD32 intercepts and parsing for too long (causing blinking in main UI process' OpenGL Context). I've never looked to Chromium source code so I'm not sure if I'm right about new IPC (if it is new). Also I mine cause graphical system in Ubuntu is X11. It is better to other victims of such error to reply if you are using Wayland (in case X11 do not answer to prevent flooding in thread). It is maybe related. To check which system you are using enter in terminal following command: echo $XDG_SESSION_TYPE
  48. 1 point
    Gaming mode could be easier to activate, some time on the past it was present on the context menu on system tray icon. I would really like to have it back there, at lest a option to do it faster. Also, could implement a way of customizing the context menu with what you actually use. Also, could implement a black/dark theme to the UI. I've been using it for so long, I actually love the Smart Security Premium, but, this little things, sometimes are really boring to set up every single time you want to play a game. -I thought, there could be a "White List" where you put the programs you'd like, and then Eset's SSP auto enter "Gaming Mode" when it detects the process running.
  49. 1 point
    I don't think so. For instance, Windows Defender doesn't have any at all.
  50. 1 point
    This is a problem of DB design and it should be solved. It is also not possible to combine reports like in V5. @ Failed / Trace message - some trace messages like "Task failed in the security product" are not telling us why this task failed. You should take more closer look on this. I will add also something: Description: LOG deletion uppon Computer deletion Detail: When I delete computer from ERA console, all coresponding logs in "Threats" are deleted too. This is a "no way" for security product.
  • Newsletter

    Want to keep up to date with all our latest news and information?
    Sign Up
  • Create New...