[suspected freeze with NOD32 v5]

Regarding upd.ver, reading from or writing to it definitely cannot cause any issues. Please contact Customer care and provide them with the Procmon log for analysis.

 

As for the problems with submitting longer posts, I've notified our forum administrator and we'll look into it.

[False Positive @http://na.lolesports.com]

It was not the icon file but an actual anchor referencing to a site recently hosting a malicious content. HTML/SrcInject is an algorithmic detection that is triggered automatically in case of a reference to a malicious site (ie. it was not made on purpose because somebody had reported it to us).

[where is my software ?]

If you are from Belgium and purchased the license from the Belgian distributor, please fill in the support form in Belgian or French to contact the local Customer care. In the mean time, you can activate a 30-day trial version which will provide full protection until the issue is sorted.

[Eset 6 and Win 8.1]

is it possible to upgrade eset 6 to eset 7 preview and windows 8 to windows 8.1 afterwards? So, windows upgrade wouldn´t be unprotected and still use prior eset rules and config somehow? import?

 

Installation of a newer version over an older one with settings preserved has always been supported.

[False Positive @http://na.lolesports.com]

It seems that site hxxp://eune.lolesports.com/  is blocked as well. Pretty annoying, considering the fact that there are ongoing League of Legends World Championships :/

 

I'm able to access it without anything being blocked. There was a reason for the block as the domain referenced from the website in question has recently hosted malware endangering users.

[is smart security really 64 bit?]

It doesn't matter if ekrn is 32 or 64-bit, you wouldn't notice any difference at all if it was 64-bit.

[False Positive @http://na.lolesports.com]

It was a reference to a server known to have recently hosted malware which was blocked. The block has been adjusted slightly so that it's not triggered in this particular case.

[Eset endpoint antivirus - not display the remaining time of the licence]

Hello,

clients in a corporate environment should update from a local mirror without having the username and password entered. Your username and password for update should only be entered in the ERAS update setup provided that clients update from a mirror created by ERA.

[New Network Address Detected]

When you first connect to a network and choose Home network (ie. a network with sharing and some other services enabled), an authenticated zone will be generated automatically based on certain network parameters (e.g. DHCP or DNS server IP, gateway's IP, SSID,etc). If this parameter changes and the zone cannot be authenticated, you'll be presented the dialog with network type selection.

[Sample Submission for Analysis]

Since this topic has gone astray, we'll draw it to a close. Everything has been said and explained in this or other related topics.

["identic ip adress detected"]

Does the problem actually go away after temporarily disabling firewall via gui?

["identic ip adress detected"]

It should be just an informative message not causing a communication to be blocked. Resolve the IP address conflict by making sure that each device in the network has a unique IP address assigned.

[ESET SS 6 Firewall Configuration for Two PC Home Network]

Make sure HomeGroup support is enabled in the IDS setup and that the other computer's IP address is within the Trusted zone range.

[Email Signature with Hyperlinks missing]

Couldn't it be that your Endpoint was configured to append a tag to all scanned email? By default, this feature is enabled only for infected email but it's possible to enable it for all email which, however, may sometimes cause issues with improperly formatted html email.

[V6 and Sysinspector problems]

For how long did you wait for SysInspector to finish creation of the log? Sometimes it may take several minutes to create it, depending on how many items are parsed.

[Update client from 4.0.474 to 5.0.2214 failing]

Upgrade via ERA was first supported by version 4.2.4x. To upgrade older clients, use the Install feature to push a new install package to clients.

[Ransomware using ESET graphics (was: Government backdoor in NOD32?)]

Of course, no prestigious antivirus vendor includes malicious files in their products. Doing so would badly damage their reputation and it would be the end of business for such a company.

[ECLS - Wildcard Folder Scan]

Ecls doesn't support wildcards.

[is smart security really 64 bit?]

Yes, that's normal. The necessary modules are 64-bit, however.

[peerblock and smart security bsod]

Please convey a memory dump from BSOD to ESET for analysis.

[Windows Defender false positive]

This is not an executable but a small data file. I think it shouldn't be a problem to delete it completely.

[Games are not happy with new ESET Smart Security]

I'll provide you with a logging version of a module shortly which should shed more light into the issue.

[false positive is not solved from last 6 month]

It's a potentially unwanted application, it's not FP. PUA detection is fully optional and it's up to the user whether he or she wants to have this kind of applications detected or not. Having said that, we'll draw this topic to a close.

Note: the only communication channel for disputing detections is email as described in the KB article hxxp://kb.eset.com/esetkb/index?page=content&id=SOLN141.

[Eset flagging/quarantining Office DLLs as Trojan?]

Win32/Urlbot.NAG is a detection from 2011. I'll drop you a pm with further instructions.

[Email message in Outlook changed to draft by ESET]

Property conflicts do not cause a message to be open from the Draft folder instead of Inbox. If a message is concurrently modified by ESET on a client (e.g. by appending a tag with the scan result) and on the server, the message should appear in the Sync issues / Conflicts folder.