Marcos

You can block urls by adding them in the User's blacklist in the URL list management : For blocking IP addresses use a blocking firewall rule. Hashes can be blocked only via ESET Inspect.

I meant strict cleaning in the appropriate on-demand scanner profile setup:

Unfortunately I have no clue what json files are the above settings from, I could not find such in my ESET Bridge folder. All I did was install ESET Bridge for Windows and set its IP address in the Endpoint configuration, it then worked like a charm. I also saw the activity in C:\ProgramData\ESET\Bridge\Proxies\Nginx\logs\access.log.

I assume that the on-demand scan was either run in scan-only mode or was not run with strict cleaning mode set in the scan profile.

As far as I know, only using ermm.exe as stated above. You can raise a support ticket and ask, however.

Called a "watershed year for ransomware", 2023 marked a reversal from the decline in ransomware payments observed in the previous yearView the full article

Please provide a Wireshark pcap log from an activation attempt as well as the public license ID in the form of XXX-XXX-XXX.

We expect a new hotfix to be available towards the end of January or in February.

What is the correlation between the said error and ESET products?

Most importantly you must purchase a license if you haven't already and use ESET Server Security on file servers. On desktops use ESET Endpoint Security (with a firewall) or ESET Endpoint Antivirus.

There are 2 problems: 1, You have installed ESET Endpoint Security on a server OS. You should uninstall it and use ESET Server Security instead provided you have a valid license. 2, Endpoint Security was activated using a leaked license key from China which has been canceled in the mean time.

The file should have a name like ees_logs.zip.

What error do you get when you manually run update? Please carry on as follows: Enable advanced logging under Help and support -> Technical support Run update Stop logging Collect logs with ESET Log Collector and upload the generated archive here.

It always takes some time for staggered application updates to become available for all users. There are currently still users with v8 and some have been already upgraded to v9.

Please provide the appropriate record from the Detections log.

The website is indeed infected: https://sitecheck.sucuri.net/results/https/le-blog-des-leaders.com

I assume it could be because it was not a newly created file signed by Microsoft.

Do you have detection of potentially unsafe applications enabled? I've tested it but could not remove ESET even via the "Forced MSI uninstall" option:

Release Date: February 8, 2024 ESET Server Security for Linux 9.1.99.0 has been released and is available to download. Changelog: Version 9.1.99.0 FIXED: Compilation of kernel modules fails with latest kernels on Ubuntu 22.04 LTS Upgrade to Latest Version Upgrade my ESET Server Security products for Linux to the latest version Support Resources ESET provides support in the form of Online Help (user guides), fully localized application and Online Help, online Knowledgebase, and applicable to your region, chat, email or phone support. Online Help (user guides) Visit www.eset.com/contact to email ESET technical support

This was a false positive. It was fixed earlier today so it should not be detected after restoring it from quarantine.

Please raise a support ticket. It will be probably necessary to reset your license and re-activate your ESET Endpoint using the new one.

You can upload them to a file sharing services, such as OneDrive, Dropbox, etc. and drop me a private message with a download link.

There's basically no need make any changes in ESET Bridge configuration after you install it. Just configure the proxy server via a security product policy:

The issue would need to be reproduced on our end but we were unable to reproduce it. Please raise a support ticket so that it's tracked in the ticketing system.

Please provide: 1, Logs collected with ESET Log Collector 2, A Procmon boot log saved unfiltered in the PML format and compressed.