-
Posts
36,328 -
Joined
-
Last visited
-
Days Won
1,445
Posts posted by Marcos
-
-
It was fixed in the mean time. Please refer to https://support.eset.com/kb141 for instructions how to report possible FPs to ESET next time.
-
If the detection is still triggered on the website, please provide ELC logs but also select "quarantined files" prior to collecting the stuff.
-
Do you actually have any of the supported email clients installed on the server? Please provide also ELC logs from the machine.
-
In the advanced setup -> Tools -> Diagnostics, select "Full" dump type from the drop-down menu and click OK. When the issue occurs, click Create (dump) in the Diagnostic section of the advanced setup. Finally collect logs with ELC. Upload the generated archive to a safe location (e.g. Dropbox, Onedrive, etc.) and drop me a private message with the download link.
You can also create a Procmon dump from time when the issue occurs: https://support.eset.com/kb6308.
-
Ok, I understand the issue now. It's caused by the fact that you are using an old version of ESET Smart Security (v9). Newer versions of consumer products were not affected and neither was Endpoint 6.6. We strongly recommend uninstalling ESS v9 and installing EIS v11.2.49.
-
Are you getting BSOD like this? By ESET Smart Security you mean ESET Smart Security Premium? If not, uninstall it and install ESET Internet Security v11.2.49 which replaced ESET Smart Security a quite long time ago.
-
I'd recommend uninstalling v9 and installing ESET Internet Security v11.2.49 from scratch.
-
Are you using Windows XP that you have an old version of ESET Smart Security v9 installed?
-
Please provide your public license ID. Also make sure that you have installed the product that you have purchased. Ie. if you purchased a license for ESET NOD32 Antivirus, make sure that you have installed ESET NOD32 Antivirus.
-
Did you also upgrade ERA Agent to v7 via an ESMC component upgrade task?
-
Not sure what the error reads in English but I guess it could be caused by the fact that ESET's servers providing antispam services are inaccessible. Check https://support.eset.com/kb332 for a list of servers that should be reachable from the mail server.
-
29 minutes ago, Jaromir said:
How is it possible to have so urgent bug for such long period ? In this thread You have only developers so You can be sure that we know software production rules. Could You give any precise info ?
As stated above, a hotfix will be available soon. If everything goes well, within 2 weeks. The hotfix will address several bugs that have been reported by users or found internally. We have finished a new CE module which has been on pre-release update servers since yesterday, all higher priority bugs have been fixed, drivers were submitted to Microsoft for WHQL certification and once we receive them, pre-release QA tests will begin.
-
ESET scans email received through POP3(S) and IMAP(S) regardless of the email client you use.
Windows 10 Mail runs sandboxed as far as I know and therefore the ESET plug-in cannot integrate into it.
-
What error do you get when you attempt to activate Endpoint using a license key via Help and support -> Change license ?
-
Are you using a Mikrotik router? If so, it might have been compromised and a CoinMiner javascript is being added through a special html file that has the original page included via a frame. This is currently detected as a PUA (JS/CoinMiner.AH) so make sure that you have PUA detection enabled and modules updated.
-
Unfortunately, without further logs it's impossible to tell what the issue is.
The best would be if you could temporarily install EIS, enable network protection advanced logging, reboot the machine, disable logging and then collect ELC logs for analysis.
-
That is probably some simulator which is a problem because:
1, Each security sw works differently in terms of behavior detection. Unlike exploit blockers which are supposed to detect suspicious behavior, eicar is about a static detection of a very specific file that all av vendors agreed on to detect.
2, Detection of a simulator doesn't tell anything about detection and protection capabilities of a particular AV. As a result, an AV that detects a simulator may fail to detect real exploits and likewise an AV that doesn't detect it may protect you from actual exploits. -
Not sure what you mean by "connector". If you have purchased a license via Google Play, your license will be registered to your GP email address. All you need to do is install ESET Mobile Security from GP if you haven't already done so.
-
You have already created a topic about that: https://forum.eset.com/topic/16371-eset-internet-security-11-delete-advanced-systemcare-11/
Be aware that creating duplicate topics is against this forum rules.
-
Not sure if this error is reported if access to epns.eset.com is blocked by a firewall for instance (https://help.eset.com/esmc_admin/70/en-US/epns.html). I assume that an ESMC developer will clarify.
-
What version of ERA do you have installed? Or you are already using ESMC? What version of agent and Endpoint is on clients?
What does C:\ProgramData\ESET\RemoteAdministrator\Agent\EraAgentApplicationData\Logs\status.html say? Could you copy/paste its content?
-
I'm not sure what you exactly mean. I can understand that the tag messages that is appended to scanned email is in English because accented local characters would be broken. And since the tag message may also contain the name of a threat that was detected and this name is shared across the program, it would appear translated.
There's nothing that can be done about that but disabling adding the tag messages to scanned email which is by default.
-
I assume that currently it's only possible to manually delete the appropriate registry key in HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall.
-
Please carry on as follows:
- In the advanced setup -> Tools -> Diagnostics, enable update engine and network protection advanced logging
- Reboot the computer
- Stop logging
- Collect logs with ELC and provide me with the generated archive.
How to find/stop address that keeps giving me multiple "Address has been blocked" notifications
in Malware Finding and Cleaning
Posted
You didn't mention what browser you use. It appears to be a JS/Revizer that accesses the url. Try launching the browser without extensions / add-ons loaded. Also collect logs with ELC and provide me with the generated archive.