Jump to content

Peter Randziak

ESET Moderators
 View Profile  See their activity

  • Posts

    3,516

  • Joined

  • Last visited

  • Days Won

    207

 Content Type 

Posts posted by Peter Randziak

    Nod 32 v8

    in ESET NOD32 Antivirus

    Posted

    Hello MSE,

    Thank you for sharing your opinions.

     

    I said the core application, but a very large part of the functionality is covered by automatically updated modules, which are developed for all versions even those in basic support.

    I may agree with partially about the tests, but if you are not a good driver, it is probably just a matter of time until you cause an accident and even if one went through a job interview like a star, he will be probably released from his work once his real capabilities are revealed,...

    You would be probably surprised how many user are interested in low resources consumption, especially in the smooth system usage.

    The same as about RAM you can say about any other resources like who cares about CPU consumption, when there are multi cores common nowadays, 1 TB disks and so on,...

    Regards, P.R.

    ESET Endpoint Security 6.6 is available for evaluation

    in ESET Beta Products for Business Users

    Posted

    Dear ESET Endpoint Security / ESET Endpoint Antivirus users,

     

    I’m pleased to announce that the new version of ESET Endpoint Security 6.6 built from new code base is ready to be tested outside of our lab, by the real users.

    The builds are available on our FTP server ftp.nod.sk/~randziak/EES_6.6_BETA/

     

    This version can be activated by standard licenses issued for ESET Endpoint Security.

    In case you are interested in a BETA license for evaluation, please drop me a private message, I will provide you with one.

    If you need the installer without the AV remover or just the ESET Endpoint Antivirus let me know as well.

     

    The most important scenario, which we would like to be tried by you is to perform and upgrade from previous ESET Endpoint Security as we believe that the changes introduced will make everyone eager to upgrade to it.

     

    Although the version 6.6 does not bring any huge new feature, the changes under the hood are more than significant:

    -          The protection modules were switched to standard .dll format bringing:

                        significant RAM saving

                        full support for the Microsoft Windows 10 Creators update

                        faster ESET service startup

    -          Improves the protection level

                        AMSI support (Windows 10+)

                        Protected service (Windows 8.1+)

                        Advanced scanning of browser scripts

    -          Native x64 ESET service

    -          Initial scan improvements

                        Runs only once, after the product is activated

                        Does not start if a laptop is on battery

    -          Revamped GUI

                        New update pane

                        New Help and support section

                        New Setup pane design

                        New Logs layout

                        Graphics improvements

    -  The product starts the full protection, including the drivers installation after the activation

    -  Firewall uses the Windows network settings as a default (no user prompt after installation)

     

    As you can see the list of changes is quite long and we believe that all of them will improve both the level of protection and the level of user experience.

     

    As the changes were quite significant, we are aware of few known issues with this product, which shouldn’t affect the user experience too much:

    -  New settings are not available in ERA yet

    -  Product activation is not kept after upgrade from EES / EEA generation 5 and some settings are not overtaken (like Scan profiles)

    -  Some protection features are shown as not functional until system reboot

    -  New version link on Protection status does not work, update to new version must be started from Update pane

    -  Help is not fully updated yet

     

    Please do not hesitate to share your experience with the new EES 6.6 on the forums, in case of technical issues the preferred way is to submit a support ticket via the help and feedback available in the product as logs are generated and send (if allowed by the user) on the background to easy the analysis by our engineers and developers.

     

    We are looking forward to your feedback,

    Peter Randziak

    ESET Endpoint Security 6.6 is available for evaluation

    in ESET Endpoint Products

    Posted

    Dear ESET Endpoint Security / ESET Endpoint Antivirus users,

     

    I’m pleased to announce that the new version of ESET Endpoint Security 6.6 built from new code base is ready to be tested outside of our lab, by the real users.

    The builds are available on our FTP server ftp.nod.sk/~randziak/EES_6.6_BETA/

     

    This version can be activated by standard licenses issued for ESET Endpoint Security.

    In case you are interested in a BETA license for evaluation, please drop me a private message, I will provide you with one.

    If you need the installer without the AV remover or just the ESET Endpoint Antivirus let me know as well.

     

    The most important scenario, which we would like to be tried by you is to perform and upgrade from previous ESET Endpoint Security as we believe that the changes introduced will make everyone eager to upgrade to it.

     

    Although the version 6.6 does not bring any huge new feature, the changes under the hood are more than significant:

    -          The protection modules were switched to standard .dll format bringing:

                        significant RAM saving

                        full support for the Microsoft Windows 10 Creators update

                        faster ESET service startup

    -          Improves the protection level

                        AMSI support (Windows 10+)

                        Protected service (Windows 8.1+)

                        Advanced scanning of browser scripts

    -          Native x64 ESET service

    -          Initial scan improvements

                        Runs only once, after the product is activated

                        Does not start if a laptop is on battery

    -          Revamped GUI

                        New update pane

                        New Help and support section

                        New Setup pane design

                        New Logs layout

                        Graphics improvements

    -  The product starts the full protection, including the drivers installation after the activation

    -  Firewall uses the Windows network settings as a default (no user prompt after installation)

     

    As you can see the list of changes is quite long and we believe that all of them will improve both the level of protection and the level of user experience.

     

    As the changes were quite significant, we are aware of few known issues with this product, which shouldn’t affect the user experience too much:

    -  New settings are not available in ERA yet

    -  Product activation is not kept after upgrade from EES / EEA generation 5 and some settings are not overtaken (like Scan profiles)

    -  Some protection features are shown as not functional until system reboot

    -  New version link on Protection status does not work, update to new version must be started from Update pane

    -  Help is not fully updated yet

     

    Please do not hesitate to share your experience with the new EES 6.6 on the forums, in case of technical issues the preferred way is to submit a support ticket via the help and feedback available in the product as logs are generated and send (if allowed by the user) on the background to easy the analysis by our engineers and developers.

     

    We are looking forward to your feedback,

    Peter Randziak

    Nod 32 v8

    in ESET NOD32 Antivirus

    Posted

    Hello MSE,

    well synthetic tests are one thing and real user experience is other.

    We continually add new protection layers (which might of course will use a bit more resources) but also we work hard on optimizing the existing ones as the resource usage is one of our key advantages, with the level of protection of course.

    In v.10 we made significant changes under the hood to improve the product and some can be really seen like the memory consumption, which is significantly lower than in the previous versions.

    When it comes to the support you will get it for sure, but I do not thing we would made any significant changes in the core application unless a critical bug is reported. 

    The upgrade to v.10 is quite good advise in my opinion as over the time we fixed many issues and it is quite ineffective both for customer and for support to time-consumingly troubleshoot an issue, which is probably already fixed,...

    Regards, P.R.

    ESET eats almost whole ram while scanning processes

    in ESET Internet Security & ESET Smart Security Premium

    Posted

    Hello,

    thank you for the screenshots.

    I was in impression that the high memory consumption is caused by the ESET service (ekrn.exe) now I can see it the ESET GUI (egui.exe)

    Can you please run a procdump from an elevated command line with parameters procdump.exe -ma -m 1000 egui (it will dump egui.exe if the memory will go over 1 000 MB), procdump can be downloaded from the MS site: https://technet.microsoft.com/en-us/sysinternals/dd996900.aspx

    Pack the dump along with output from ESET log collector created according to http://support.eset.com/kb3466/?locale=en_US , upload it to a safe location and send me a link via private message to check.

    Regards, P.R.

    Zero-Day Exploit

    in General Discussion

    Posted

    Hello itman,

    thank you for sharing this interesting piece of info.

    We are aware of this possibility and we have it in plan to look into it, but it probably won't be easy so no promises.

    I still remember the issues we had after enabling Protected service for the ESET service ekrn.exe,... 

    Regards, P.R.

    Zero-Day Exploit

    in General Discussion

    Posted

    AS Marcos stated, you need to have admin rights to write required registry entries to perform this type of attack. 

    The registry entries for ESET service (ekrn.exe) and ESET GUI (egui.exe) are protected by the Self-defense as mentioned.

    I tried myself the "rename" workaround, they mentioned in the technical analysis on Win7x64 (so without Protected service available) and it was blocked by Self-defense successfully.

×
×
  • Create New...