-
Posts
37,924 -
Joined
-
Last visited
-
Days Won
1,504
Everything posted by Marcos
-
To my best knowledge, we haven't received any reports of the system being hung after a module update. I'd suggest configuring Windows to generate complete memory dumps and enabling manual triggering of a crash so that you can generate a dump should the system get hung again. A complete memory dump should reveal the actual cause of the problem.
-
Are you getting an error even if you enter your current license key manually in the activation form in Endpoint? If so, what error is it?
-
Move from EMSX 4.5 to 6.X Increased spam?
Marcos replied to jdashn's topic in ESET Products for Windows Servers
As for what is being logged, you can check the mail server protection logs and review the records. Regarding ELC logs, you can decide what exactly will be submitted. If you think that some non-ESET logs are not suitable for providing them to us, it should be basically ok if you don't select them to be collected. -
Please provide a Procmon boot log (read https://support.eset.com/kb6308/ - steps 1-4 and then follow the instructions Gather boot log files). Also collect logs with ELC. When done, upload both archives to a safe location and drop me a message with download links. Before you start, temporarily disable Protected service in the HIPS setup and reboot the machine.
-
Please provide a Procmon boot log (read https://support.eset.com/kb6308/ - steps 1-4 and then follow the instructions Gather boot log files). Also collect logs with ELC. When done, upload both archives to a safe location and drop me a message with download links. Before you start, temporarily disable Protected service in the HIPS setup and reboot the machine.
-
For me the Zvelo form is working alright. Have you tried setting Google DNS servers 8.8.8.8 / 4.4.4.4 on a computer to see if it makes a difference? Should the problem persist, install ESET Endpoint Security 6.6 on one of the machines, enable advanced firewall and Web control logging, reproduce the issue, disable logging, collect log with ELC and provide the generated archive to customer care for analysis.
-
Is it a port scan attack that is detected? You can create exceptions for remote IP addresses from which legitimate communication is blocked or even bind the exception to a specific firewall profile (e.g. the one that is active when connected to your company's LAN).
-
This is not a standard behavior and nobody else has reported an issue like this. Theoretically this could happen if edevmon.sys is removed from the disk but remains registered in the registry, e.g. when the computer is suddenly turned off or restarted before the installation / driver unregistration is completed.
-
Eset 11.0.159.9 does not update on some systems?
Marcos replied to hrgajek's topic in ESET NOD32 Antivirus
Currently 11.0.159 is the latest version. We plan to release a newer version 11.1.X soon and your ESET will update automatically then. -
Please contact your local distributor to find out.
-
Is this a clean install or upgrade, ie. you are installing over an older version? Please provide: - an install log created as per https://support.eset.com/kb406/ - A Procmon log with advanced output enabled as per https://support.eset.com/kb6308/ - ELC logs Upload both archives to a safe location and drop me a message with download links. You can also try running the ESET Uninstall tool in safe mode before re-trying a clean install.
-
Honestly, I can conceive how this should work. Imagine that some computers may be offline, on some scans may take very long, etc. so the question is how long would be long enough for ERA to wait before a report is sent even if scans were not completed. Also I'm not sure how possible threats from particular scans could be correlated to particular reports from technical point of view.
-
Move from EMSX 4.5 to 6.X Increased spam?
Marcos replied to jdashn's topic in ESET Products for Windows Servers
I'd suggest temporarily enabling diagnostic mail server logging and receive an unrecognized spam. Then disable logging, collect logs with ELC and supply them to Customer care along with the unrecognized spam saved as an eml or msg file. I assume that in this instance Hub transport role is installed since antispam is not available in Mailbox role at all. -
So far all cases that users reported have been magically resolved themselves before we were able to connect remotely and debug the issue.
-
Developers have already replied you: Please note that supporting HTTP/2 means implementing full client and server functionality as specified by standards. This isn't directly related to certificates, and changing the TLS handshake to advertise HTTP/2 support is one of the easiest things to implement. This is not something that can be accomplished in a week or even in 2-3 months. I'd say it takes almost a year to do the implementation and subsequent testing properly. I assume you even didn't expect Microsoft to code Windows 10 in less a year from scratch; it definitely took them years.