-
Posts
37,934 -
Joined
-
Last visited
-
Days Won
1,504
Everything posted by Marcos
-
Is ESET blocking KB4058258 (Windows 10 16299.214)?
Marcos replied to howardagoldberg's topic in ESET NOD32 Antivirus
Do you have AntiStealth module 1124 installed? If so, is HKLM\SOFTWARE\ESET\ESET Security\CurrentVersion\Info\WindowsCompatibilityLevel set to 1? It may take some time for Windows to re-check another patch compatibility value after this value has been set. I assume that a system restart could speed it up but I'm not sure 100%. -
Changelog for Endpoint Security 6.6.2072.4?
Marcos replied to Cousin Vinny's topic in ESET Endpoint Products
Yes, you can. What matters is the version number 6.6.2072. The latest version 6.6.2072.4 is important for new installations since it contains the latest modules to prevent BSOD if Meltdown patches are installed. Already installed versions should have all modules updated. -
Web and Mail protocol Filtering is Non-Functional.
Marcos replied to Babek's topic in ESET NOD32 Antivirus
Please collect logs with ELC first. When done, you can either post the generated archive here or drop me a personal message with the archive attached. If too big to attach, upload it to a safe location and provide a download link. -
There must have been something wrong with the certificate store I assume. Should you come across such issue again, with Firefox not running delete C:\Users\%user%\AppData\Roaming\Mozilla\Firefox\Profiles\%profilename%\cert8.db. Then disable SSL/TLS filtering in ESET, click ok and re-enable it so that the ESET root certificate is imported into the certificate store. After launching Firefox make sure that https websites open alright and that the eicar test file is detected upon downloading it from an https link: https://secure.eicar.org/eicar_com.zip.
-
Changelog for Endpoint Security 6.6.2072.4?
Marcos replied to Cousin Vinny's topic in ESET Endpoint Products
Please don't look at the last number; it indicates changes in the localization or re-packed installer with latest modules included. If you have any version 6.6.2072.X and it's fully updated, it's equal to 6.6.2072.4. -
Exlcusion not working
Marcos replied to mwhalenhtc's topic in ESET PROTECT On-prem (Remote Management)
Please post the appropriate detection record from the Detected threats log (the whole line) so that we know what was detected and in what folder. There's is currently a bug in the program when a specific path to a file or folder is entered in the exclusion list and a threat name is specified as well, however, enabling "Exclude for this computer" appears to be a workaround (ie. the path reads * ). -
Can't activate product, no response from support
Marcos replied to det's topic in ESET NOD32 Antivirus
Normally you should contact your local support. If you haven't received a response from them for whatever reason, you can drop me a personal message with the 2 emails you've received attached. Either of them should contain your license details, in particular your license key which I will look up on files then. -
It is a false positive of Kaspersky. Please make sure that the scanner is up to date. We reported the FP to them months ago and they allegedly fixed it. If it's still detected, report them the FP too.
-
Dobry den, Nakolko pre analyzu budu potrebne logy obsahujuce aj dalsie informacie o telefone, po uisteni sa, ze mate nainstalovanu aktualnu verziu Parental Control odoslite, prosim, z aplikacie hlasenie na technicku podporu. Odporucame ho odoslat z telefonu dietata, nakolko by sa mohlo stat, ze pokial sa jeho mobil nepripoji na siet v priebehu cca 1 dna, logy by sme nemuseli dostat.
-
That's correct. The policies that you don't want to be applied to all PCs may not be bound to the All group since all subgroups will inherit them. I would create a new static group and move all but dynamic groups under that new static group and bind the desired policies to it. As a result, dynamic groups located right under the global All group won't inherit these policies.
-
First of all, enable HIPS and reboot the server as soon as possible. By disabling HIPS you lose important protection features, such as Advanced Memory Scanner, Exploit Blocker, Ransomware shield and Self-defense. Please run the command "wmic process list >pl.txt" and attach pl.txt here.
-
Try running the Uninstall tool in safe mode: https://support.eset.com/kb2289/.
-
Ok, I now see that it's a standard system file. If you have doubts about its origin, right click the file, select Properties -> Digital signatures and, if the name of signer is "Microsoft Windows", double click the signature in the list. It will open signature details. Make sure that on the General tab it says that the digital signature is OK. Moreover, the legitimate system file is not MSIL but Win64PE. Please provide the whole record from the Detected threats log which might shed more light.
-
If ithe file is detected as a PUA,definitely it's not a system file. Moreover,its name does't ring a bell so it's really suspicious.
-
Web and Mail protocol Filtering is Non-Functional.
Marcos replied to Babek's topic in ESET NOD32 Antivirus
Please check your private messages. Import of a driver to the Driver store failed (Failed to import driver package into Driver Store. Error = 0x000006BE, Error 1726: The remote procedure call failed.). I've provided you with instructions that you could try to get things work. -
Constant Coinminer.D from Coinhive
Marcos replied to PurpleRanarr's topic in Malware Finding and Cleaning
You can exclude this particular PUA from detection by its name. -
The WinPE version of SysRescue is an ancient one and is not supported any more. It was replaced with a Linux version years ago.
-
iPad/iPhone decoding issue with incoming emails tagged by Eset
Marcos replied to Samoréen's topic in ESET NOD32 Antivirus
We've never recommended to enable adding tag messages to all scanned email, only to infected ones. Especially with html emails there can be a problem adding the appropriate html code at a correct place if the html code is non-standard. Tag messages should only use ANSI characters, ie. no accented characters should be used. However, in the localization process it may happen that the message appended to email is accidentally translated. Are you able to reproduce the issue with English version of ESET? -
Please let us know what version of MS Exchange Outlook connects to and whether the issue doesn't occur in case you send email via a gmail or another smtp server. A weird thing is the issue suddenly stopped occurring while we were troubleshooting the issue with one of our customers without making any changes.
-
Please continue in the existing topic https://forum.eset.com/topic/14607-outlook-add-in-problem/ and let us know what version of MS Exchange Outlook connects to. In order to prevent duplicate topics on a same subject, we'll draw this one to a close.