[ESS 9 and Protection of bank transactions]

Srware Iron produced the same result for me as IE 11.

What happens if you copy the URL https://www.bmcinet.net/and paste it into Iron's address bar?

[ESS 9 and Protection of bank transactions]

I just tested the URL in IE11 and was redirected to https://www.bmcinet.net/part/fr/dciweb.htm?p0=idesai.tht&t=p, no sign of any https://www.bmcinet.net/?

[ESS 9 and Protection of bank transactions]

Could you provide the actual URL for your bank, to see if the behaviour you describe can be reproduced?

[Undocumented serious error (0x1106) - clearing update cache has no effect]

If you wish to stay with v8, I'd try installing version 8.0.319 to see if that remedies the problem.

hxxp://www.eset.com/int/download/home/detail/family/2/fileflag/8.0.319.1/

Version 9 comes with quite recent signatures and modules, so there is that option.

hxxp://www.eset.com/int/download//home/detail/family/2?installer=offline

[Getting message in Action center that I need AV]

I've attached a batch file to do the job. Just unzip it and right click 'Run as Administrator'.

I'll include the code below for anyone's perusal.

@echo off
for /F "tokens=1,2*" %%x in ('bcdedit') do set adminTest=%%x
if (%adminTest%)==(Access) goto not_admin

NET STOP WINMGMT /Y
REN %WINDIR%\SYSTEM32\WBEM\REPOSITORY REPOSITORY.OLD
echo.
echo Reboot the PC to complete the process
echo.
echo Press any key to exit.
pause>nul
goto finish

:not_admin
echo You must run this file as administrator!
echo.
echo Press any key to exit.
pause>nul

:finish

ACFix.zip

[Getting message in Action center that I need AV]

Sorry Jim, it should have been 'Windows Management Instrumentation'.

I can write you a batch file to do the job if you like.

[Getting message in Action center that I need AV]

To manually do what the KB article instructs:

• Press the Windows key + R to bring up the Run box.
• Type in services.msc, then press Enter
• Scroll down and select 'Windows Management Interface', then Stop the service.
• Navigate to "C:\Windows\System32\wbem\repository"
• Rename the repository directory to repository.old
• Reboot Windows.

[Getting message in Action center that I need AV]

Follow the instructions at the following ESET KB link:

hxxp://support.eset.com/kb217/

[Connecting to the Internet takes much longer after using ESET SS uninstall tool]

Have you tried reinstalling the drivers for your network adapter?

[URL not opening in secured browser]

I just downloaded Chrome portable and tested with your bank URL and it opened in a secured browser.

hxxp://www.chrome-portable.com/index.php/google-chrome-offline-installer- perhaps you could try with the portable app, that way you can rule in or out any possible problem with your current Chrome installation.

BTW, you can use 7-zip or similar to extract everything from the portable installer. (There's no need to run the installer.)

[URL not opening in secured browser]

Sorry, I was mistaken, it was only the first time I went to the bank URL (I hadn't entered the site as a protected website) that it didn't open a secured browser until I logged on.

[URL not opening in secured browser]

I typed that URL into the address bar of IE 11 and as I expected it opened in an unsecured browser. When I tried to login to pbebank, IE switched to a secured window frame which is the behaviour I get with the bank website I regularly use.

 

Do you still have an unsecured browser if you try to log in?

[ESET SS picked up trojan]

Assuming you mean GiveAwayoftheDay:

I just checked the download with Virus signature db: 12442 and ESET didn't detect anything.

Ran the installer in a VM and all it did was ask to change the browser homepage to giveawayoftheday.com

Also a registry key HKCU\Software\GiveAwayofTheDay.com was created.

 

oops...ninja post - Marcos beat me to it.

[The firewall turned off automatically!]

You also need to answer Marcos 2nd point: As for epfwlwf, please check your network properties if ESET Personal Firewall is checked (enabled).

[Port Not Opening]

Thanks for letting us know.

[Port Not Opening]

My computer is the server so should I remove the remote settings? And try again?

Yes, I'd remove thoses rules. What mode do you have the firewall set to?

You could always temporarily set the firewall to learning mode, connect to the server so the rules are made, then tighten the rules up if necessary.

[Network Protection is not active]

Have you tried a complete uninstall using the ESET uninstall tool from safe mode, then install?

[Are you liking the firewall rules view in ESS 9 vs 8?]

The major reason for the change is that the firewall rules for an application are evaluated in order, top to bottom.

For example:

Allow communication for someProgram
Allow communication for someProgram[2]
Allow communication for someProgram[3]
Block communication for someProgram    // Block all other communication for someProgram.

That way you can create specific allow and ask rules for a program, followed by a global block for any other communication.

[Network Protection is not active]

Have you tried doing a repair of the installation?

You can either go to Control Panel ->Programs and Features and select ESS or

from the complete start menu, under ESET click Uninstall, then follow the prompts and select Repair.

[detection floater - disabled options]

I just reproduced the alert that pavilion_alex is seeing.

When the initial notification is displayed, 'Copy to Quarantine' is the only option that can be unchecked or checked, but if you click 'Ignore'

you'll get another notification where 'Copy to Quarantine', 'Exclude from detection' and 'Exclude signature from detection' are all available to select.

[ESS 9 - Desktop Notifications]

Win 7 x64 - Screen resolution 1440 x 900 - standard DPI

 

On further investigation - When I plug in for example a flash drive, the device popup notification position gets saved in the registry to DesktopAlertPosition2.

If I position the alert in the bottom RHS, DesktopAlertPosition2 always gets set to zero. Plugging the device in again results in DesktopAlertPosition2 being set to 0x00140014.

 

I've tested in a virtual machine running XP and the position is saved correctly.

So this is definitely a bug.

[ESS 9 - Desktop Notifications]

Windows 7x64 up to date

ESS v9.0.318.0

 

When I plug in a device, the closest I can position the desktop notification to the bottom RHS corner (that ESS will remember) is approximately the width of the taskbar above the taskbar and 3 times taskbar width from the right.

 

Note: Update notifications can be placed and are remembered in the bottom rhs.

 

Is this by design or a bug?

[ESS 9 - Live grid file submissions]

Thanks TomasP for the reply.

So with Live Grid enabled and submit statistics and files disabled, is Live Grid less effective for me?

[ESS v9 feedback]

I just wanted to say a huge thank you to the ESET team and all the beta testers.

Overall, I couldn't be happier with this release.

[ESS 9 - Live grid file submissions]

I have live grid enabled with submit statistics and files disabled. Does this lower detection via reputation significantly or at all?

If I enable submission of files, is there any way to exclude my development project executables from being submitted.

1. I would prefer that they not be submitted.
2. Every time I compile a project with some modifications, would there the possibility of many variants of the same file being submitted?