Marcos
-
Posts
37,066 -
Joined
-
Last visited
-
Days Won
1,470
Posts posted by Marcos
-
-
Yes, archives and self-extracting archives can be disabled separately and it's also possible to set limits for scanning archives. However, every exception lowers the overall protection capabilities as malware can also spread in archives larger than 100 MB.
-
Please provide more information about the files reported as "damaged archive" (name, size, download url if it's known).
-
Try deleting the content of the c:\windows\temp folder.
-
In the upper right-hand corner of the website, you can select the desired country.
-
It could be because of changes in the archive module which is now able to unpack more files than before.
-
There's no such trigger for scheduled tasks. If you create a scan task via Scheduler, you'll see what options are available. Maybe the solution will be the Idle-state scanning feature that is currently a part of home edition.and will be included in the next version of Endpoint, too. It allows for setting the "Computer lock" event as a trigger for a scan.
-
If possible, please create a video that would demonstrate how to reproduce the issue. We've tried to reproduce it with MS Outlook 2013 installed on 2 computers and concurrently accessing emails in a Gmail mailbox to no avail (sync issues were occurring for an obvious reason but this had no effect on the issue with messages opening as draft).
Also please confirm or deny whether you can reproduce it with a Gmail account.
-
Since I don't know how exactly other anti-exploit solutions work, it's impossible for me to compare v7 with them. Basically it should protect browsers and certain system processes against malware exploiting vulnerabilities.
-
Just to make sure that Device control is not loaded, run the following command with elevated rights and post the output:
"sc query edevmon"
-
Yes, but this could be a problem if you have several dozens of computers that do not connect to ERAS and have settings protected with an unknown password. In such case, you'd need to resort to installing an ESET product on clients while using a custom configuration with no password set or push an uninstall package on the clients and then install a product package on the clients with no password set.
-
Do those files have a special extension added, such as OMG, GOD, etc? It's likely that the files got encrypted with GpCode or a recent advanced Filecoder variant and the chance of recovering them is low. Anyway, send me 2-3 encrypted files attached to a personal message for analysis.
For more information about Filecoder ransomware and the way they get into computers, please read these blogs:
hxxp://www.welivesecurity.com/2013/09/23/filecoder-holding-your-data-to-ransom
-
Regarding staggered releases, not only software has to be perfectly ready for release from the technical point of view but also all distributors worldwide have to be ready for the release on local markets (it also includes manufacturing CDs, marketing campaigns, etc.). Thanks to the staggered release, the second wave builds will have an issue with Outlook 2013 fixed.
-
ESET has always been fully compatible with Windows XP. Regarding the software causing incompatibility issues, it was confirmed by programmers that the problem doesn't lie in ESET products but in the problematic 3rd party drivers.
-
In order to download the engine ending with "P", you'll need to switch to pre-release updates in the advanced update setup.
-
Yes, you can schedule a scan via Scheduler which will be run in the background regardless if a user is logged or not.
-
Not, the mentioned programs use improperly written drivers causing issues in conjunction with ESET's drivers on Windows XP.
-
Is there a reason why you installed ESET Endpoint Antivirus or Security on servers instead of ESET File Security? Does the problem occur with protocol filtering disabled?
-
For me personally, Advanced memory scanner is the most valuable improvement in v7 as it can protect users against a huge number of zero-day threats without the need to update. It's supplemented by Exploit blocker (HIPS) and Vulnerability shield (firewall). Also it's much easier now to exclude addresses from active protection when an attack is attempted from a trusted remote device (firewall).
-
You can disable automatic updates in Scheduler. Of course, this will change the protection status as this action puts the computer at risk if the user forgets to update ESET on a regular basis (updates are usually released in 3-4 hour interval).
-
Even older versions have modules already fully compatible with Windows 8.1. If you have an issue with v5/v6 on Windows 8.1, please contact Customer care who will assist you like with any other issue.
-
In safe mode, try deleting the value HKEY_LOCAL_MACHINE\SOFTWARE\ESET\ESET Security\CurrentVersion\Info\WscState
-
When an attack attempt is detected by v7, it should offer you an option to trust the source address and to exclude it from active protection. Watch this demonstration video:
-
Not sure what exactly you've deleted. Are you getting an error when ESET is loading upon Windows start ? Have you tried running update manually and restarting the computer?
-
I have installed to the fresh windows 8.1 x64 the Beta ESET SS v7.0.104 .
The Bugs I Have mantioned linked with hips and updating data base. When I pushing update , IT starts downloading update about 17 mb, then It refreshes data base, but after this, eset wants to download about 519 kb bases, but when It was downloaded , the refreshing of database was finished with this error :
Undocumented serious error (0x1106)
Does clearing update cache make a difference? If not, try uninstalling v7 and installing it from scratch.
Why is ESET failing so bad?
in ESET Internet Security & ESET Smart Security Premium
Posted
What improvements do you mean in particular? ESET already excels in detection and performance when it comes to real-world use.