beethoven

Marcos, I was following the recommendations by Mbam to exclude their files within NOD and thought it might be advisable to do the same for the NOD files within Mbam. No issues so far.

Just one follow up question - to exclude NOD files from being scanned by Malwarebytes, which files should I set up as exclusions. At the moment I am using the Program Files\Eset but this would not include drivers. Is there any recommendation to list specific files ?

Marcos, thank you again - I looked in the wrong spot under realtime file system protection. Found it now and can adjust as planned.

I have updated to the latest version and want to add some exclusions. I used to do this in earlier versions but get stuck with 11.1.42.0 - I assumed this is under Advanced/Exclusions and Edit. This opens a window and allowed me to add certain extensions but I just want to add very specific files or folders to be ignored, e.g. Malwarebytes. It seems this does not work anymore. I can add individual extensions but is there another setting somewhere for folders or files as opposed to extensions?

Thanks Marcos, that explains it and I think I will leave it as it is.

Just wondering how the website certificate checking works? I noticed that for most sites Eset is checking the certificates or at least when looking at info on a certificate for https I see that it appears as issued by Eset SSL Filter CA. I vaguely remember that NOD takes an "intermediary" role to do some additional checking. However I am surprised to see some sites e.g. Google or showing Google as the Issuer. What should I look out and expect when checking the certificate info?

the only add-on I am using is ublock origin - as for reproducing it, let me check tomorrow when I am actually using pc and see when or on which pages the alert comes back. At the moment it's "quiet".

Marcos, that's exactly my point. I believe the popup on the Eset Forum is wrong as was the pop up when I used Paypal. The alert shows Firefox trying to communicate but at the time no other site was active. If NOD alerted me in general terms that something on my pc was trying to reach out, I would be more concerned but if the only thing running on Firefox is the NOD forum, something does not make sense.

I just started receiving this warning too and am a bit confused. With Firefox only running this very forum by Eset, why would I get the attached message? This started earlier today and given that it happened before on legit sites (e.g. paypal) without advertisements, I was unsure. Unfortunately the alert does not actually provide more detailed info as to what caused the alert. I tried to isolate the issue by not opening multiple sites, so now it's just this forum. Are we sure that this issue is not related to some malfunction in the software running some redundant check on some incomplete certificate listing irrespective of the website I am currently visiting? I had the alert coming up both in FF and Chrome.

cyberhash, thank you - it's not my pc but appeared on a pc in one of our offices. I will ask the person to have a look tomorrow to see if this setting is used but I think in this office we are using an enterprise version (not necessarily the latest), so config may be different to my own here (which is a stand-alone license). Is there anywhere a file I could check against if this particular threat/malware is detected or if installed NOD can remove it (with the right settings)?

One of our pc appears to have been infected by some browser popup malware/junkware - see attached screenshot. According to some google research this seems to be some form of advertising junk that affects all your browsers. Is this not something that NOD would normally pick up?

Thank you Marcos, tried this but it made no difference. The same error message as before.

I am running V10.1.219 on Win 7/64 and starting to use outlook 2007 I am getting a security warning. Basically it tells me that "the server you are connected to us using a security certificate that cannot be verified. The target principal name is incorrect" When viewing the certificate I see thta the certificate is issues to my own website (trying to download email from the server) and under certifcation path it shows as OK. However as Eset is shown in details as the issuer when the certificate is actually from geotrust, this seems to cause a problem. While I can allow this and override the Eset filter, I seem to have to do this every time I start outlook. Is there a setting that allows me to make this permanent?

Thanks Page42, no worries. Seems this update did not contain many new important features or bug fixes, so I was happy to wait for a bit. Probably will go through with it in a few days when I have a bit more time on my hands. Cheers Beethoven

Page42, just to clarify and as my pc is running the same combo of Win7/64 bit with sandboxie - you no longer think that there is any issue between the two and that the orginal problem was "just" some corruption during the update process?

great - thank you - updated now and everything seems fine

I was checking out the forum to find out about the new version 10 ( as I am still running NOD 9) but none of the links in the stickies https://forum.eset.com/topic/12090-eset-windows-home-products-versions-101210-have-been-released/ re known issues or upgrade procedure actually work. I am getting "sorry, we could not find that" on two different browsers. Can you please fix this.

Great - thanks for clearing this up.

Just wondering how to read the details of a certificate while using NOD V9. If I click on the padlock, details and then view certificate of a site, I am shown the ESET filter details. is there any way to see the actual certificate the site is using?

Thank you Marcos, seems to me beneficial though not absolutely necessary for everyone.

I just upgraded to V 9 and noticed that this version contains SSL scanning. I think this may have been included in earlier versions but was not enabled by default. Using AV on a desktop for "normal" use, I don't quite understand what exactly is being done with this feature. I read some articles about scanning encrypted traffic and while I can see this makes sense for certain types of email, how is this relevant for me as a user going to a https website? I am not trying to be difficult, just would like to understand. It seems that this traffic is now routed somehow via eset or uses some eset certificates and I would like to understand how this improves my security as an enduser. I believe https websites and their certifcates are already protected/checked by the browsers and I guess using open dns, ip addresses are being checked there? While I have found some links about how to enable this or how to deal with problems arising from this, I could not find anything explaining the need for this in the first place. Any explanation or link to such would be greatly appreciated.

Thank you MichalJ, that helps me interpret the info. Looking forward to the new notification wizard later this year.

as an update I also wonder if there is any better way to make the email output actually readable. At the moment I am getting something like the message below. For some clients I managed to attach a name, so at least I know which client to check. But does the message actually tell me anything other than a scan has finished? If a virus had been found in the scan, would that be obvious? At the moment I see "scanned; infected; cleaned and status but can only assume that these are headers that have no corresponding entry in the line below?

Thanks Marcos - do you have any further info on how the banking protection is being provided?

Just wondering what the difference between Version 9 and Version 8 is. I can't find a changelog or overview what the advantages/improvements are. I am also surprised that the latest version is still only available via direct download. Given that Version 9 was released last year, I would have thought that this is stable enough now to release fully?