Marcos

I get very same results when clicking either link. We don't use zap; it's only used by ESET LLC in the US. It's a kind of automated scripts as far as I know.

Please download and install v10 from ESET's website www.eset.com and activate a trial version after installation.

What exactly stops working after installing ESS? Are you unable to ping www.eset.com for instance either? Or only HTTP/HTTPS communication doesn't work? Have you tried resetting TCP/IP? See https://support.microsoft.com/en-us/help/299357/how-to-reset-tcp-ip-by-using-the-netshell-utility.

Perhaps it's just a visual or localization issue. According to your HIPS log, the operation was allowed. If possible, try to reproduce it with the English version and see if the message has the opposite meaning. Also I strongly recommend disabling logging all blocked operations in the advanced HIPS setup or the HIPS log may grow quickly, affecting system performance. That setting should only be enabled when troubleshooting particular HIPS-related issues.

Normal users never have to open the gui. What do you do with gui so often that it now requires 8 more clicks than with v8? It still is and is much lighter than ever before (not taking v1/v2 into account). Please clarify if and under what circumstances you experience performance issues so that we can help you troubleshoot them.

This could be accomplished using two firewall profiles, the default one that would block any http (or all) communication and the other profile that would have no rules set. Then open the Known networks setup, add a new network or edit an existing one (VPN) and assign it the new firewall provide that has the communication allowed. On the "Network identification tab", select the desired network parameter based on which the VPN connection will be identified (e.g. Network adapter type -> Virtual adapter (VPN)).

The website is infected and contains JS/TrojanDownloader.FakejQuery.G trojan. All you need to do is clean it properly and take measures to prevent further re-infection. Next time, please contact ESET Malware Research Lab as per the instructions at http://support.eset.com/kb141.

Files with the .wallet extension are legitimate files encrypted by Filecoder.Crysis and therefore are not subject to detection. Decryption will not be possible. You can pm me the output from ESET Log Collector according to the instructions in my signature for a review.

Please provide me with the output archive generated by ESET Log Collector. For instructions, see the appropriate link in my signature.

If you temporarily disable HIPS and restart the computer, does MediaInfo start to work?

If I understand it correctly, applications other than web browsers connect to some https sites, such as quickbooks.com. If that's the case, in the advanced setup -> Web and email protection exclude these applications from protocol filtering.

See http://support.eset.com/kb141/ for instructions how to request a website review after it was hacked and blocked. Since the malware was removed, it will be unblocked as of the next update.

Does temporarily disabling protection or uninstalling ESET make a difference?

When LiveInstaller starts, you can select the desired language version to be installed.

ERA Server does not necessarily be installed within the same network. It's possible to install ERA Proxy in each of the networks (e.g. office branches); Enpoints in a particular network will then report to the ERA Proxy which then will communicate with ERAS. That said, as long as ERAS is accessible by ERA Proxy instances, it will work just fine.

If you provide me with the output from ESET Log Collector, I'll be able to tell. See my signature for instructions.

As far as I know, you should be able to download ESET CyberSecurity and activate it using your license key.

EMSX v4.5 is not recommended for Windows 2008 and 2012 as its real-time protection is not compatible with these systems. According to your screen shot, I assume it's Windows Server 2003. Could you confirm? Anyways, I'd strongly recommend upgrading to the latest EMSX 6.4 to take advantage of LiveGrid and other new malware and spam blocking features that it supports. Ela.eset.com serves for administering licenses for v6+ versions. If you want to stay with v4.5 despite all its disadvantages, try removing the license files and adding just the license file that you have received with the last license email that you should have received after purchasing a renewal. Should the problem persist, contact customer care for further troubleshooting.

We only have it for partners. Often changes are of internal character so they are not disclosed at all.

Have you tried uninstalling ESET, downloading the installer from www.eset.com, installing v10 from scratch and activating it without touching any of its settings, applying cracks, etc?

How do you know that ESET's firewall is the culprit? How did you rule out the possibility of a 3rd party application clashing with ESS? If you suspect the firewall to have blocked the communication, did temporarily disabling the firewall from gui or in advanced setup actually resolve the issue? If not, then it's unlikely to be an issue with ESET's firewall. If it's only HTTP/HTTPS communication which is blocked, does temporarily disabling protocol filtering make a difference?

Please provide step-by-step instructions how you performed the test. Do you have SSL/TLS scanning enabled? What product / version and operating system do you use?

First of all, uninstall v9 and install ESS version 10. Should the problem persist, collect logs using ESET Log Collector and send me the output archive via a pm. For instructions, see the appropriate link in my signature.

Did you install ESET Endpoint Antivirus or ESET Endpoint Security? The former doesn't contain firewall.

If you attempted to log in from outside of his trusted zone, it's normal that the firewall blocked the communication in automatic mode. In automatic mode, all non-initiated incoming communication is blocked and all outgoing communication is allowed. This is also how Windows firewall and many other firewalls work in automatic mode. In case of problems with a desired communication being blocked, enable advanced firewall logging under Diagnostics -> Tools and reproduce the issue. When done, disable logging and provide a customer care or moderator with the pcapng file created in the C:\ProgramData\ESET\%ProductName%\Diagnostics folder as well as with logs from ESET Log Collector for detailed analysis.