Marcos

I've played Battlefield 3 with ESS 7.0.104 beta installed and Advanced memory scanner enabled but didn't notice any issues at all. Is anybody else experiencing this issue?

The plug-in for Thunderbird supports only older versions of it due to a rapid development cycle and significant changes in each new version. Without the plug-in, only email received via POP3 and IMAP will be scanned for malware, ie. the spam filter in ESET Smart Security won't work.

Do you have SSL scanning enabled? Otherwise https websites won't be filtered.

There are many potentially unwanted or unsafe applications (besides actual malware) where ESET is the only vendor to detect them. If a file is detected just by one vendor, it doesn't make it a false positive automatically. Likewise, if a file is detected by more than 40 vendors at VirusTotal, it doesn't make it functional malware. The results only rise or lower the level of suspiciousness. Most toolbars meet the criteria of PUA and hence they are detected. Having said that, we'll draw this topic to a close.

Since we don't know whether it's HIPS or Self-defense causing the issue, try disabling each, one at a time. If that doesn't help, disable both. If that doesn't resolve the issue, try renaming the above mentioned driver in safe mode. Note that this needs to be done in order to narrow the issue down, I don't suggest it as a permanent "solution" for the issue.

It is mentioned in the action selection window that multiple items can be selected at once, e.g. by pressing Ctrl+A.

Please be more specific about the versions. If you have Firefox 22 or newer installed, you'll need to export the root certificate from ESS and import it to Firefox TRCA certificate store manually for https websites to open properly. If you have Opera 15 installed, just ignore the message for the time being, SSL scanning will work anyway.

ESET is actually quite strong when it comes to ransomware detection. Of course, no security software offers 100% detection of malware, however, ESET uses mechanisms so that detection for newly emerging and unrecognized variants is added in the next update. If ransomware has made it to a computer and detection was added afterwards, the following procedure should work to clean it out: - turn off / on the computer or restart it - after Windows starts, wait about 5 minutes so that the latest update is downloaded and a startup scan is run (even if the ransomware is active and blocking the screen and other actions, the process of updating and cleaning will be run in the background) - turn off / on the computer I'd also suggest trying v7 beta which has been running smoothly and only minor issues have been reported. It features Advanced memory scanner which helps to protect against zero-day malware, Vulnerability shield to detect and block attempts to exploit known system vulnerabilities and one more new feature to improve malware detection even more. That said, it will be much stronger than its predecessors v6, v5 or older.

Hello, Does any of the following make a difference? - disabling real-time protection via gui - disabling HIPS + Self-defense and restarting the computer

You must have made something wrong. If a threat is detected, there will be no problem to delete or clean the file providing that Windows or another application isn't using the file exclusively. Please create a new topic where we can troubleshoot it further. Although there's still room for improvements, ESET products are one of the best in terms of detection and performance.

Yes, system variables are supported. User variables won't work as they are unknown to the local system account.

The application was analyzed and the detection is ok, the case is closed.

What web browsers and email clients do you use?

This is a known issue from previous versions and we hope it will be eventually fixed in the final version 7.

Unfortunately, we have no clue what the message reads. Please contact your local Customer care or try installing v6 from scratch. You can also try installing v7 beta which has been very stable and the current version has no serious issues.

Hello, only ecls.exe can be run from the command line. What you are asking for should be viable via eshell.exe present in server products.

The actual file name is ess_nt64_enu.msi. I'll check out the links on the download page. Edit: I was able to download the msi installer from the official download page hxxp://www.eset.com/int/download/beta-versions/detail/family/212/ fine.

Just to make it clear, with a guest account you don't use any password to log in to this forum so using the password recovery feature makes no sense until you create an account. Authentication with a username and password is required only for registered users. If you created an account and now report this as a guest because you couldn't log in, please supply me with your registered username so that I can check the status of your account. Yes, there's a line in the source that loads a java script from another url. Also the script is bounded with typical malware markers. As for reporting blocked URLs to ESET, there's a section in the above mentioned KB article called "Email – Report a blocked website or false positive" towards the end of the article with simple instructions how to proceed.

It's the HIPS and self-defense driver which may block certain operations. I'd expect some issues might occur during logon if you have LogMeIn installed for instance. You can rename the driver to ehdrv.sy_ or whatever you want.

As soon as Windows 8.1 is officially supported, it will be announced. Nonetheless, the current beta seems to work flawlessly on Windows 8.1 so far.

The block seems to be ok. The website is full of adware and several other vendors are blocking it, too.

Does renaming C:\Windows\System32\drivers\ehdrv.sys in safe mode make a difference?

We recommend that clients in a network update from a local mirror to avoid licensing issues and to reduce the amount of data downloaded from ESET's servers.

Does disabling any of the protection modules make a difference? Did the support tell you if the error is related to network communication or something else?

The detection is correct. The only communication channel for disputing detections is email; for more information how to report a file to ESET, see this KB article.