Marcos
-
Content Count
20,573 -
Joined
-
Last visited
-
Days Won
896
Posts posted by Marcos
-
-
Try uninstalling ESET, running the ESET Uninstall tool in safe mode and installing the latest v13.2 from scratch.
-
Quote
TBH I've no clue why all of a sudden my ESET started to talk to me in Russian. That happened about 4/5 months ago.
That's really weird. Maybe attackers connected via RDP and installed the Russian version of our software to confuse you and to prevent you from understanding what settings they turned off or reconfigured in a way to allow malware to run. If you still have the Russian version installed, please collect logs with ESET Log Collector for perusal.
We'll reach out to the Russian partner on this. I too don't believe that refunding the license would not be possible. Feel free to drop me a message if you don't get a refund within several days so that I can escalate the case then.
-
We kindly ask you to post in English in order for moderators and other users to understand you and be able to help.
Do you mean ESET Internet Security for Windows or ESET CyberSecurity for Mac OS?
-
The Japanese partner releases their localized versions of ESET's products with a delay. Changes in the last version numbers indicate changes in localization or modules.
-
ARP cache poisoning may occur if a computer has more network adapters sharing the same IP address for load balancing or if there are devices with identical IP addresses in the network. If you trust the device, create an IDS exception for the detection. The same applies to the TCP port scanning attack detection; if it originates from a trusted devices and you know that it can scan remote ports for legitimate purposes, create an IDS exception.
-
The list of available updates is provided by the operating system. ESET doesn't do anything on its own, it just gets this list and displays available updates.
-
The error could be caused by insufficient permissions for the target folder or the quarantined files could be corrupted or inaccessible, e.g. due to a hw failure. Right-click the desired file in quarantine, select "Restore to" and restore it to a folder on your system drive. Then you can manually move it to another device or drive.
Please provide logs collected with ESET Log Collector.
-
Please upload logs collected with ESET Log Collector for a start.
-
Maybe it's just a confusion because the ESMC agent is actually the file ERAAgent.exe. You can check its version in the ESMC console or in the file properties:
-
I assume it could affect adding the root certificate to the system trusted root CA certificate store so SSL filtering might not work. However, module and program updates should work fine I assume.
-
If you have a license for 2 devices you should not activate ESET on a 3rd one. From the legal point of view you should first contact your ESET license seller and extend the license to cover 3 devices.
-
We don't have a product for servers with a firewall. However, ESET File Security and ESET Mail Security (for MS Exchange, Sharepoint) contain Network protection to block network attacks, e.g. RDP bruteforce attacks. If you want to use a firewall, use Windows firewall or a 3rd party firewall for servers.
-
If it's a file server, ESET File Security is the right product. If you have also licenses for Endpoint, please contact your local ESET partner since it's typically included in bundles with Endpoint products.
-
If egui_proxy is among running processes I'd recommend opening a ticket with your local support for further investigation.
-
I'd recommend contacting your local ESET support. Could not determine the reason for ACT.39 error, your license appears ok to me.
-
Please provide your public license ID.
-
Actually what you are selecting here is your ESMC server, not the client(s) that you are going to upgrade ESMC components on. Since your ESMC server is running on Windows, you saw "ESET Security Management Center Server; version 7.2.1278.0 for windows (WINDOWS)" there.
-
Does temporarily disabling protocol filtering in the advanced setup make a difference?
-
You will keep receiving a notification about license overuse. For more information about how mailboxes are counted, please read https://support.eset.com/en/kb3761.
-
Please provide more details on the "virus". Did ESET fail to detect it? If so, how do you know that you got a virus? What version of ESET NOD32 Antivirus do you have installed?
To start off, I'd recommend uploading logs collected with ESET Log Collector for ESET staff here.
-
To by best knowledge it should work. What happens if you send an ESMC component upgrade task to a Mac client? Is the task failing? Or simply nothing happens and agent is not upgraded?
-
Can the ESMC server and agents on machines communicate via MQTT on port 8883 with epns.eset.com? Do you use an http proxy? If so, does it require authorization?
For more information about EPNS, please refer to https://help.eset.com/esmc_admin/72/en-US/epns.html&ref=esf.
-
If you manually run "C:\Program Files\ESET\ESET Security\egui.exe", does the UI open?
You could also try removing ESET in safe mode using the ESET Uninstall tool and installing the latest version 13.2 from scratch with default settings.
-
When a new network is detected, you are asked if you trust it or not. E.g. if you connect your computer to your home network for the first time, you should mark it as home/office network (trusted). If you connect to a wi-fi network on an airport for instance, you mark it as public because you don't trust it.
In your case it was new networks for different adapters on your machine that were detected (ethernet, some virtual adapter and ipsec0) so you may want to mark them as home/office networks that you trust. After clicking OK for each of the networks you should not be asked again.
Problems with "Send Wake-Up Call"
in Remote Management
Posted
Please try configuring agent to log with trace / debug verbosity. After applying the policy, send a wake-up call to the machine and provide us with the agent trace log for perusal.