-
Posts
37,924 -
Joined
-
Last visited
-
Days Won
1,504
Everything posted by Marcos
-
-
Detected Port Scanning Attack Whitelist?
Marcos replied to hsmithjtek's topic in ESET PROTECT On-prem (Remote Management)
You can exclude specific addresses from an IDS detection in the IDS exceptions setup (available in the policy editor too): Alternatively you can right-click the appropriate record in the firewall log and select "Do not block similar events in the future": -
It may have negligible effect on performance. Create advanced logs should always be clickable, at least I can't think of a scenario when it would be greyed out (at least as long as you have administrator permissions).
-
ERA deployment
Marcos replied to Marna Marie' Strauss's topic in ESET PROTECT On-prem (Remote Management)
After deploying Agent to endpoints (e.g. via GPO as per the instructions at https://support.eset.com/kb3675/), Agent should start reporting to ERAS. -
ESET mail security vs barracuda mail security gateway
Marcos replied to mayowa's topic in ESET Endpoint Products
As for email protection, with the Dynamic Threat Defense feature that is going to be introduced in Endpoint v7 suspicious files (e.g. attachments) will be analyzed in an off-premise cloud sandbox, leveraging machine learning and behavior-based detection to evaluate the dangerousness of the file which will remove the gap between a new malware appears and a detection is added or the file is blocked by LiveGrid. -
We'll also need the content of the c:\ProgramData\ESET\Updfiles and c:\program files\eset\eset security\modules folders from the time when the error occurs. When reproducing the issue, enable advanced logging in the main gui -> help and support -> details for customer care. After reproducing the issue, disable advanced logging, gather logs with ELC and also provide the content of the above mentioned folders.
-
So what persuaded you to go for ESET rather than MSE ?
-
Please enable advanced logging under Help and support -> Details for customer care and attempt to update. Then disable logging at the same place and gather all logs using ESET Log Collector. Upload the generated archive to a safe location (e.g. Dropbox, OneDrive, etc.) and provide me with a download link. Prior to gathering logs, please quit any browsers and network-aware applications to minimize the amount of captured data.
-
If Internet connection is established when you are getting the error, then something is blocking the communication with LiveGrid servers. If you have EIS 11.1.54 installed, in the main gui navigate to Help and support -> Details for customer care and click "Create advanced logs". Next reproduce the error and then stop logging. Gather logs with ESET Log Collector, upload the generated archive to a safe location and drop me a message with a download link.
-
It doesn't matter if the OP has purchased the product or not. Probably he or she did and we don't have any reason to question it. The thing is v8 will have reached its EOL by the end of this year which means: Regular detection engine updates may continue but are not guaranteed. No technical support or patches are available for this version. Basic Support may continue but is not guaranteed. Generally we strongly recommend using the latest version for maximum protection. For instance, v8 lacks several important features, including advanced scanning of scripts, AMSI scanner, UEFI scanner, Ransomware shield, streaming updates and some other. For more information about ESET technology and protection features, please read https://www.eset.com/int/about/technology/.
-
ESET scan of external drive keeps popping up
Marcos replied to Blair's topic in ESET NOD32 Antivirus
I'd suggest contacting customer care so that the case is tracked properly. In the mean time, you can try disabling automatic scan of removable media in the advanced setup: -
It's an obfuscated AutoHotkey script so it's hard to tell what the variant you encountered exactly did.
-
Isolated installation and deployment of antivirus
Marcos replied to MicSpprt's topic in ESET Endpoint Products
Will those computers be completely isolated from the Internet? Will they have visibility to the machine running the ERA Server? Are all those computers in a domain? -
There is a problem with your license. Please provide me with logs gathered by ESET Log Collector.
-
It appears you have ESET NOD32 Antivirus v8 or older installed. Since V8 will have reached its EOL by the end of this year and does not provide complete protection against emerging threats as new versions, we urge users to upgrade to a newer version, ideally to v11.1.54.
-
Banking & Payment protection
Marcos replied to katycomputersystems's topic in ESET Endpoint Products
Banking and payment protection is a feature that is included only in consumer products ESET Internet Security and ESET Smart Security Premium. Not sure if it will be included in ESET Endpoint Security. I assume that the main reason for not including it is that Endpoint has SSL/TLS filtering disabled by default to prevent various issues with a variety of applications that communicate via HTTPS. -
Windows 10 Spring Creators Update and Nod32 AV
Marcos replied to autobotranger's topic in ESET NOD32 Antivirus
We don't blame Microsoft because we don't have a 100% proof yet but so far the root cause doesn't appear to be on ESET's part.