Marcos
-
Posts
37,079 -
Joined
-
Last visited
-
Days Won
1,472
Posts posted by Marcos
-
-
I assume you made a typo as signature updates for NOD32 2.0 were discontinued about 2-3 years ago. As for cleaning in Endpoint, default values are recommended and best for most users.
-
Please also try the suggestions at hxxp://support.microsoft.com/kb/319624.
-
If you look at the Service list in the Control panel, is the "Base filtering" service actually present and running or you mean that it's not there and running ServicesRepair didn't fix it?
-
You can disable the default update tasks and create your own which will run daily at a specific time.
-
There are two options on the download page for each of the products: Live Installer (a small installation file that runs on both x86 and x64 Windows and will download the appropriate msi file itself) and Offline installer which will download the msi file for the selected operating system.
-
As for the SSL issue, was Firefox not running at the time you enabled SSL scanning in v7? Do you use a x86 version of Firefox 24?
Does the following procedure resolve the issue?
- close Firefox (make sure firefox.exe is not among running processes)
- disable SSL scanning in v7 and confirm it by clicking OK
- enable SSL scanning
- start Firefox
Regarding the problem with your mouse, please provide us with a link to the vendor's website with more information about this particular model. Do you have Device control integration disabled? Does disabling HIPS and restarting the computer make a difference?
-
The signature database should be updated as frequently as possible in order to keep staying protected against new born malware. Even a delay of a few hours would expose computers at risk. Of course, if the computers are not connected to the Internet, the risk of infection would be much lower.
-
Just to make sure, a computer restart is required for HIPS to get disabled which I assume you did.
-
Please use the Live Installer instead of msi to make sure the msi file downloaded is not corrupt.
-
The bubble that pops up when a first-time scan is started contains a link to stop the scan. If you clicked the link, the first-time scan will not run again. Nonetheless, you can run an on-demand disk scan whenever you want.
-
I've found a bunch of files detected under that name by some other antivirus programs but all of them merely loads applet (jar file). The applet itself is detected by ESET as Java/Exploit.Agent.PVZ.
-
-
Hello,
unfortunately, without getting and analyzing the file, it's impossible to tell whether it was an actual threat, benign object related to malware or false positive.
-
Yes, that's it. If EAV is configured to require full administrator rights to perform tasks requiring them, then UAC will prompt you when such an action is attempted (indicated by a shield in a button). Disabling this option will disable UAC prompts.
As for quarantine files, neither the format nor file extensions have changed. Do you see the gui reporting 1 file in quarantine even after a computer restart?
-
Do you have ESET NOD32 Antivirus 7.0.302 installed?
-
For blocking access to domains, use URL address management in the Web access protection setup.
Access to a certain IP address can only be blocked using a blocking firewall rule in ESS.
-
Hello,
Are you able to select country on www.eset.com as follows? The Latin America department is responsible for distributing ESET's products in Latin America only so it makes sense they limit country selection in order to provide their customers with as accurate information as possible. Now investigating if it'd be possible to add country selection after clicking the globe icon as it is on other ESET's websites.
Edit: the website has been fixed and clicking the globe icon will enable you to select the desired country.
-
If you run a custom scan, click Setup in the window with target selection and enable "Log all objects" in the "Other" section.
-
It appears that Spector modifies the memory region of running processes which triggers this detection. We're investigating it.
-
It's in the IDS setup -> Intrusion detection you can select protocols to be protected against exploits exploiting known vulnerabilities in these protocols.
-
This is a known issue. My understanding is that Anti-phishing shouldn't get disabled with other protection modules.
-
Make sure that the IP address 172.30.1.1 is in the Trusted zone. Then check IDS settings in the advanced firewall setup and make sure that UPnP is allowed for system services in the Trusted zone (enabled by default). If turning off the firewall doesn't resolve the issue at all times, try disabling application protocol filtering in the advanced setup.
Let us know about your findings.
-
Please enable logging of all scanned files so that you see the last one scanned. When you narrow it down to a particular file causing the scanner to hang, compress the file while using the password "infected" and send me the archive via a private message.
-
Does disabling firewall via gui actually make a difference?
False positive: Kindersicherung 2013 from salfeld.de
in ESET NOD32 Antivirus
Posted
Only Win32/MCH is detected as a potentially unsafe application. Potentially unsafe applications cover legit tools that can be misused in the wrongs hands, not sure what purpose it's included in the package for.