Marcos

It's not possible to remove update servers from the list without uninstalling the program and installing it from scratch (besides editing the registry in safe mode). However, what matters is what update server is selected; there can be many servers defined but updates will be downloaded only from the selected one.

In the Scheduler (task editor) window, check the "Revert to default scheduled tasks" box. Applying this setting on clients will effectively remove all existing custom tasks and you will be able to schedule your own tasks from scratch.

See hxxp://www.eicar.org/85-0-Download.html. Given that ESET has extremely low rate of false positives and utilizes mechanisms to prevent false positives on prevalent files, I'd strongly suggest leaving the cleaning mode set at the default level (also it's possible to restore detected files from quarantine). Otherwise you may end up with malware locking your computer without being able to select an action upon detection.

Thank you for reporting this bug, apparently there's a problem with the Italian Configuration Editor when editing certain settings. Please rename cfgeditLang.dll in the ERA install folder and use the English template until the bug is fixed.

I'd suggest carrying on as follows: 1, uninstall ESS using the Uninstall tool 2, empty the system temporary folder (c:\windows\temp by default) 3, make sure the folder C:\ProgramData\ESET\ESET Smart Security doesn't exist or delete it otherwise 4, install ESS v6.0.316 from scratch

What particular web pages do you mean? Are you getting an error when attempting to access them?

Maybe it's a specially crafted (patched) archive. Please submit it to ESET as per the instructions here.

Should the problem persist, post a screen shot of the error you get. At any rate, I'd suggest contacting Customer care who could connect to the computer remotely and troubleshoot the issue.

I, for one, would not run a full disk scan more than once per month as there's not much sense in it. The scan is a time and resource consuming operation. Given that real-time protection protects the user from running threats in archives, too, I don't see much sense in running on-demand scans frequently. Needless to say that there are startup scans run after each update and computer startup.

This issue affected only Windows 7 users with HIPS configured to work in learning mode (not set by default). Please review the HIPS rules and remove the redundant ones.

Please carry on as follows: - download ProcDump from this link and run it so that the executable procdump.exe is extracted - reproduce the crash - with the Windows Error Reporting message on the screen, run "procdump -ma egui" - compress egui.dmp and supply it to Customer care for analysis.

Unfortunately, the SysInspector log didn't contain information about installed modules so we assume it was created by an old version of SysInspector. Please do the following: 1, copy & paste the information about installed modules (tray icon -> About) 2, with HIPS 1078 installed, disable Self-defense while leaving HIPS enabled. Does the problem persist after a computer restart?

Does uninstalling ESS and installing it from scratch make a difference? Please provide more information about the oper. system used and the total amount of RAM / free RAM.

Please follow these instructions for creating an install log. When done, post the log here or submit it to Customer care for analysis.

I second that. According to my personal observation of the data we work with, ESET is very often the only AV solution from among the well known AVs to protect against newly emerging threats and threat variants.

The software in question is not detected as malware (ie. virus, trojan, etc.) but as a potentially unwanted application (PUA). The software was analyzed in ESET's malware research lab and was found to meet criteria for PUA detection. Detection of PUA is fully optional and it's up to the user if they want to opt for detection or not. Even with PUA detection enabled, the user can exclude the application from scanning so that it's not detected. Having said that, we'll draw this thread to a close.

This error usually occurs if a backup of the original msi installer was deleted from c:\windows\installer folder. Please run this Uninstall tool in safe mode, then retry installation.

Could you confirm or deny that the issue affects only CDs/DVDs burnt using the Disk-At-Once method and multisession media are blocked fine?

Please enable logging of blocked operations in the advanced HIPS setup, reproduce the problem and then supply us with your HIPS log. Also post information about the operating system, platform (x86/x64) and modules that are installed when the issue occurs and when it doesn't as there a chance some other modules were rolled back as well. According to the engineers, HIPS 1078 has some features disabled which might slightly affect the performance.

If you rename C:\ProgramData\ESET\ESET Smart Security\epfwdata.bin and C:\ProgramData\ESET\ESET Smart Security\EpfwUser.dat in safe mode, does it fix the issue ?

Please post more information from the on-demand scanner log with the full path to the files as well as the detection names.

Hello, make sure that you have SSL scanning enabled.

I'd suggest leaving HIPS mode in automatic mode. If you are computer savvy, you can define your own rules, e.g. make HIPS prompt you for an action when an application attempts to write to a run key. For instance, I use a rule to ask me before running an application for which no rule has been created yet.

I assume you have ESET NOD32 Antivirus Business Edition for Linux Desktop 4.0.79 installed on clients, do you? What Linux distribution do you use? Also post the output of running "uname -a".

Protocol filtering works at the application layer so it doesn't inspect packets. Did disabling protocol filtering actually make the issue go away?