Marcos

This has been discussed here numerous times. Email received via pop3(s) / imap(s) will be scanned regardless of whether there's a dedicated email client plug-in or not. The major drawback of not having a plug-in for a particular email client is that the antispam filter will not work.

Ddi you run it in safe mode? If in normal mode, you would have to make sure that self-defense is not active. To accomplish this, run "sc query ehdrv". If the error occurs in safe mode as well, the problem is not caused by ESET and the registry permissions must have been tampered with somehow.

You probably have UAC enabled but didn't run cmd with elevated administrator rights.

Right, the HIPS module currently available on the update servers is 1115. We release new module updates in steps, ie. after being tested in our testing and production environment, they go to pre-release servers for a certain period of time. Afterwards we perform staggered updates so not all users receive new modules immediately.

To make a list of installed apps, you can create a batch file (e.g. list.bat) with the following content: When done, run the batch file and post software_list.txt here.

Did you run the command from the older where Subinacl is installed? Otherwise you must use a full path to subinacl.exe.

Download and install SubInACL, then run it as follows: SUBINACL /verbose=1 /subkeyreg "Software\ESET\ESET Security\CurrentVersion\Info" /grant="Administrators"=F /grant="SYSTEM"=F /setowner=Administrators

Those who don't have pre-release updates enabled may have HIPS module 1115 or 1119 installed at the moment. Please compress the memory dump from BSOD, upload it to a safe location and pm me the download link.

What firewall mode do you use? In order for rules to be applied, you must switch to other than Automatic mode. Shouldn't that be the problem, enable logging of blocked connections in the IDS setup, clear the firewall log, reproduce the problem and then copy & paste your firewall log records here.

According to the product manager, it should be released some time soon. No exact date has been set yet, however.

It seems incorrect permissions are set for the registry key HKLM\Software\ESET\ESET Security\CurrentVersion\Info. I assume that you're not able to delete this key manually in safe mode either, are you?

It's the Device control driver. Please upload the dump from BSOD in a compressed form to a safe location and pm me the download link.

This detection is correct as it's a highly suspicious packer allowing for evading detection by av software and thus often being exploited by malware authors. I've relayed your query to the Malware research lab to find out if we could whitelist this particular file.

If you don't receive any emails via pop3 or imap, disabling email scanning will not affect the performance in any way. Even when enabled, the impact on the performance should be unnoticeable.

If you want to allow him temporarily connect to your computer, simply disable the firewall via the right-click tray icon menu. If you want to create a rule, switch the firewall to learning mode for a while until all necessary rules are created automatically.

Should the crash occur again, create a dump of egui.exe (e.g. via the Task manager on Windows 7/8). When done, pm me for further instructions.

I assume there should be no clash with the free version of MBAM which doesn't use a real-time protection driver. If you use the full version, try renaming C:\Windows\System32\drivers\mbam.sys in safe mode and see if it resolves the problem.

Some time ago I had this issue with other applications, too so it's likely to be a Windows issue. Does the problem go away after restarting the computer?

Unfortunately, you didn't mention the name of the application nor the detection name under which it was detected by ESET. I rather suspect that the application is classified as a potentially unwanted or unsafe application; in that case it's highly unlikely it would be FP.

If you look at other posts in our forum, you'll hardly find any complaints about the stability of version 7 so likening it to a beta just before it crashes under specific circumstances on your computer doesn't seem to be exaggerated. Please provide more information about the circumstances leading to the crash. Is egui crashing all the time, randomly or when performing a specific operation? (viewing logs, running a scan, etc.)

This error means permission denied. Please create install install logs as per the instructions here and also capture operations while attempting to install ESET using Process monitor. Once you have the logs from unsuccessful install created (all logs must be from the same time), compress them, upload them to a safe location and pm me the download link.

Please export your ESS configuration to an xml file and copy & paste the firewall rules related to Roboform here.

Renaming ESET's drivers may cause errors and render protection status red. Just ignore that while troubleshooting the issue as renaming drivers was not offered as a definitive solution or workaround to the issue.

It could be that the application doesn't honor self-signed root certificates or certificates in the system Trusted root certification authorities certificate store. In such case, excluding the certificate (safer solution) or application from protocol filtering should remedy the problem.

It is not clear yet what causes the issue so it's too soon to blame ESET for it. First of all, we need to narrow it down to a particular module involved which is why I asked to rename the above mentioned drivers, one at a time.