-
Posts
37,767 -
Joined
-
Last visited
-
Days Won
1,497
Everything posted by Marcos
-
I'd suggest running a disk scan with ESET Online scanner first. If no malware is found, install ESET NOD32 Antivirus or ESET Smart Security from scratch and create install logs as per the instructions here. When done, send me the logs attached to a personal message.
-
If email protection detects malware in an email message, it's removed automatically by default. You can run a full disk scan (including a memory scan) to make sure that the computer is most likely malware-free.
-
ekrn.exe process tries to connect a malware domain
Marcos replied to altangerel's topic in ESET NOD32 Antivirus
If your system is Windows XP or Windows 2000, any application communicating via http will generate a communication via ekrn.exe which works as a local proxy. -
ESET File Security - Backup Processes
Marcos replied to a topic in ESET Products for Windows Servers
Maybe the solution would be to use Eshell to disable protection during a backup or use it to temporarily exclude the target backup folder. -
It's blocked because of a Java exploit present on the domain.
-
Please start Windows in safe mode and rename the drivers C:\Windows\System32\drivers\ehdrv.sys and eamonm.sys, one at a time. Let us know if renaming either driver makes a difference.
-
Does it happen with Device control integration disabled? Note that after disabling it, it's necessary to restart the computer for the change to take effect.
-
I'd suggest the following: - enable debug logging - reproduce the problem - provide Customer care with the debug log C:\ProgramData\ESET\ESET Remote Administrator\Server\logs\era_debug.log Are you able to connect to ERAS after restarting the ERAS service by running the following commands with elevated admin rights? "net stop era_server" "net start era_server"
-
Just to make sure, does BSOD occur with the latest version 6.0.316 or you have an older one installed? If possible, try to reproduce it with the latest v6 or v7 beta and let us know about your findings. An issue with symlinks pointing to a different volume was already fixed in an older build of v6.
-
Regarding upd.ver, reading from or writing to it definitely cannot cause any issues. Please contact Customer care and provide them with the Procmon log for analysis. As for the problems with submitting longer posts, I've notified our forum administrator and we'll look into it.
-
If you are from Belgium and purchased the license from the Belgian distributor, please fill in the support form in Belgian or French to contact the local Customer care. In the mean time, you can activate a 30-day trial version which will provide full protection until the issue is sorted.
-
When you first connect to a network and choose Home network (ie. a network with sharing and some other services enabled), an authenticated zone will be generated automatically based on certain network parameters (e.g. DHCP or DNS server IP, gateway's IP, SSID,etc). If this parameter changes and the zone cannot be authenticated, you'll be presented the dialog with network type selection.
-
Since this topic has gone astray, we'll draw it to a close. Everything has been said and explained in this or other related topics.