[Ramsomware Phoenix]

21 minutes ago, Juan said:

Do you have any answer?

Unfortunately, you attached encrypted files, not the ransomware note that I asked for.

[my website blocked by ESET , why ?]

As stated in the read-before-you-post instructions:

Do not report blocked websites
After cleaning a website from malware and taking measures to prevent further re-infection, request a re-check as per the instructions in the FAQ. This forum does not serve as a channel for requesting website re-check or disputing blocks or detections.

Having said that, we'll draw this topic to a close.

[[SOLVED]ESET Nod32 wont update modules, even if cach is empty]

You could start with checking SonicWalls logs for information about blocked connections with ESET's update servers (https://support.eset.com/kb332/#downloadupdates).

[[SOLVED]ESET Nod32 wont update modules, even if cach is empty]

That means the download was most likely blocked by the firewall:

[License Limit Alert]

Probably you have this notification enabled to notify you when the number of used seats for a license reaches 90% of all seats that the license was issued for:

[Ransomware Event - ESET Log evaluation]

On a machine with ESET installed and activated with a paid version, run ESET Log Collector and gather logs. Next compress a handful of encrypted files (ideally Office documents) along with the ransomware notes, upload all stuff to a safe location (either ESET's ftp or OneDrive, DropBox, etc.) and email samples[at]eset.com with a download link included.

[[SOLVED]ESET Nod32 wont update modules, even if cach is empty]

I'm sorry, I meant advanced setup -> Tools -> Diagnostics.

[[SOLVED]ESET Nod32 wont update modules, even if cach is empty]

4 minutes ago, bbahes said:

Can you provide Fortinet FortiOS version, IPS rule that does this? We have Fortigate on multiple location but I have never noticed any corruption. Does this effect v5 or v6 and v7 also?

See https://forum.eset.com/topic/17535-eset-corrupted-file/ for more information.

[[SOLVED]ESET Nod32 wont update modules, even if cach is empty]

Please enable network protection and update engine advanced logging in the advanced setup -> tools and run update. Next disable logging, gather logs with ESET Log Collector and provide the generated archive.

Also if possible, try updating one machine directly, bypassing the firewall just in case.

 

[Can't get eset to run]

What do you mean by that you can't get ESET to run? Are you able to install and activate ESET? Are you getting an error during install or afterwards? Could you provide some screen shots for clarification?

[[SOLVED]ESET Nod32 wont update modules, even if cach is empty]

Do you or your ISP use a Fortinet firewall or IPS? They are known to corrupt bigger update files.

[Intermittent issues with Macs and ESET Endpoint]

Does excluding these folders from scanning (EAV -> Preferences -> General -> Exclusions) make a difference?

/private/etc/
/Library/Application Support/ESET/esets/modules/

[How can I block mail spam from Gmail domain]

Is that real spam coming from gmail and not just a test using a legitimate email address? Antispam basically checks the IP addresses of the SMTP servers in the email headers so it should work reliably even if a gmail address is spoofed.

[Reddit - Address has been blocked]

It appears that it was an ad provider's address that was blocked. We didn't do anything in the mean time.

[Repositories do not appear ESMC]

What version of the ESMC Server do you use? Is it the last one available on ESET's download servers?

[[Endpoint] Google server ​​​​​​​- blocked by Anti-Phishing blacklist]

It was already fixed on April 1st.

[1803 to 1809 & ESET]

We extensively test upgrades of Windows 10 to newer version with ESET installed and never experienced issues that hadn't been fixed prior to the final release of the new version.

If you are able to reproduce it, the best would be to create an image of the disk and provide it to ESET for replication and debugging.

[Being asked for new rules for YourPhone.exe every day]

Some posts were hid while being reviewed.

[Some notifications]

ESET doesn't access your webcam but asks you for an action if another application attempts to access it. You can disable webcam protection in the main gui.

[Script virus found on web [false postive]]

Can you explain the purpose of blank javacripts loaded from js.genieessp.com and cfts1tifqr.com? To me it appears the site was hacked.

[Being asked for new rules for YourPhone.exe every day]

Please provide logs gathered with ESET Log Collector so that we can check if there are duplicate rules created.

[Howto print Virus Database Version by command line?]

If I remember correctly, running a scan of a file with esets_scan will also show a list of installed modules.

[EIS slowing down internet gradually]

Please gather logs with ESET Log Collector and post the generated archive here so that we can check the version of installed modules and a list of software that is installed on the machine.

[Local network and Remote Network IP Blocking]

Edit the rule that has both the local and remote IP addresses same.  Use only local IP addresses if you want to block any communication on these ports from outside.

[Intermittent issues with Macs and ESET Endpoint]

The question is how often the issues occur. If it doesn't take too long to reproduce, I'd start with temporarily pausing real-time protection. During reproduction, generate logs as per https://support.eset.com/kb3404. When done, raise a support ticket for customer care so that the case is tracked properly and provide the logs.