Marcos

Please collect logs with ELC first. When done, you can either post the generated archive here or drop me a personal message with the archive attached. If too big to attach, upload it to a safe location and provide a download link.

It's a new installer with the latest modules included.

There must have been something wrong with the certificate store I assume. Should you come across such issue again, with Firefox not running delete C:\Users\%user%\AppData\Roaming\Mozilla\Firefox\Profiles\%profilename%\cert8.db. Then disable SSL/TLS filtering in ESET, click ok and re-enable it so that the ESET root certificate is imported into the certificate store. After launching Firefox make sure that https websites open alright and that the eicar test file is detected upon downloading it from an https link: https://secure.eicar.org/eicar_com.zip.

Please don't look at the last number; it indicates changes in the localization or re-packed installer with latest modules included. If you have any version 6.6.2072.X and it's fully updated, it's equal to 6.6.2072.4.

Please post the appropriate detection record from the Detected threats log (the whole line) so that we know what was detected and in what folder. There's is currently a bug in the program when a specific path to a file or folder is entered in the exclusion list and a threat name is specified as well, however, enabling "Exclude for this computer" appears to be a workaround (ie. the path reads * ).

To accomplish that, select No cleaning in the on-demand scanner profile that you'll used for a scan.

Nothing happens if you click Virtual drive or Removable drive?

Normally you should contact your local support. If you haven't received a response from them for whatever reason, you can drop me a personal message with the 2 emails you've received attached. Either of them should contain your license details, in particular your license key which I will look up on files then.

Most likely the msi file was removed from c:\windows\installer in the mean time (e.g. unwittingly during a disk cleanup). Use the Uninstall tool to remove ESET in safe mode prior to installing it from scratch.

It is a false positive of Kaspersky. Please make sure that the scanner is up to date. We reported the FP to them months ago and they allegedly fixed it. If it's still detected, report them the FP too.

Dobry den, Nakolko pre analyzu budu potrebne logy obsahujuce aj dalsie informacie o telefone, po uisteni sa, ze mate nainstalovanu aktualnu verziu Parental Control odoslite, prosim, z aplikacie hlasenie na technicku podporu. Odporucame ho odoslat z telefonu dietata, nakolko by sa mohlo stat, ze pokial sa jeho mobil nepripoji na siet v priebehu cca 1 dna, logy by sme nemuseli dostat.

That's correct. The policies that you don't want to be applied to all PCs may not be bound to the All group since all subgroups will inherit them. I would create a new static group and move all but dynamic groups under that new static group and bind the desired policies to it. As a result, dynamic groups located right under the global All group won't inherit these policies.

If you create a new static group under All, e.g. All - "All with policies" and move all machines to the "All with policies" group, remove all policies from the All group and bind them to the "All with policies" group, it should work.

First of all, enable HIPS and reboot the server as soon as possible. By disabling HIPS you lose important protection features, such as Advanced Memory Scanner, Exploit Blocker, Ransomware shield and Self-defense. Please run the command "wmic process list >pl.txt" and attach pl.txt here.

Try running the Uninstall tool in safe mode: https://support.eset.com/kb2289/.

Ok, I now see that it's a standard system file. If you have doubts about its origin, right click the file, select Properties -> Digital signatures and, if the name of signer is "Microsoft Windows", double click the signature in the list. It will open signature details. Make sure that on the General tab it says that the digital signature is OK. Moreover, the legitimate system file is not MSIL but Win64PE. Please provide the whole record from the Detected threats log which might shed more light.

If ithe file is detected as a PUA,definitely it's not a system file. Moreover,its name does't ring a bell so it's really suspicious.

Please check your private messages. Import of a driver to the Driver store failed (Failed to import driver package into Driver Store. Error = 0x000006BE, Error 1726: The remote procedure call failed.). I've provided you with instructions that you could try to get things work.

You can exclude this particular PUA from detection by its name.

The WinPE version of SysRescue is an ancient one and is not supported any more. It was replaced with a Linux version years ago.

We've never recommended to enable adding tag messages to all scanned email, only to infected ones. Especially with html emails there can be a problem adding the appropriate html code at a correct place if the html code is non-standard. Tag messages should only use ANSI characters, ie. no accented characters should be used. However, in the localization process it may happen that the message appended to email is accidentally translated. Are you able to reproduce the issue with English version of ESET?

Please let us know what version of MS Exchange Outlook connects to and whether the issue doesn't occur in case you send email via a gmail or another smtp server. A weird thing is the issue suddenly stopped occurring while we were troubleshooting the issue with one of our customers without making any changes.

Please continue in the existing topic https://forum.eset.com/topic/14607-outlook-add-in-problem/ and let us know what version of MS Exchange Outlook connects to. In order to prevent duplicate topics on a same subject, we'll draw this one to a close.

That's correct. We have a fix on a to-do list, in particular to make a specific operation perform differently which will affect Samsung Magician and maybe other benchmark test with virtually no influence on real-life usage.

2FA is already supported in the current version of ERA.