Jump to content

Peter Randziak

ESET Moderators
  • Content Count

    2,445
  • Joined

  • Last visited

  • Days Won

    106

Kudos

  1. Upvote
    Peter Randziak gave kudos to Jan Botha in Office 365 inbox updating no mail   
    Thanks for the reply will let you know if this helps
  2. Upvote
    Peter Randziak gave kudos to Marcos in Eset 14.1.19.0 Push Notification Service servers   
    Please read the posts above to learn why we have started using EPNS in consumer products as of v14.1.20. WIth EPNS blocked, communication from ESET's licensing or Anti-Theft servers may be delayed by hours.
    However, you will be able to disable the appropriate application status about inaccessible EPNS servers soon.
  3. Upvote
    Peter Randziak gave kudos to Marcos in DotNet MSIL / Injector.VGR   
    We've nailed it down. A legit tool was backdoored and loads a malicious dll with zero detection at VT which loads the following encrypted payload:

    I expect the detection to be available momentarily via streamed/pico updates.
    Also please confirm that you have enabled the LiveGrid Feedback system for maximum protection.
  4. Upvote
    Peter Randziak gave kudos to Aryeh Goretsky in Antivirus vs Internet Security, Disabling Features.   
    Hello,

    Here is a snippet of a post I made on Reddit discussing the differences between ESET NOD32 Antivirus, ESET Internet Security and ESET Smart Security Premium:
    Feature Comparison
    NOTE: This section is updated from the post here discussing the ESET Version 13 consumer programs.
    Program► Feature▼ ESET NOD32 Antivirus1 ESET Internet Security ESET Smart Security Premium Advanced Machine Learning ✔️ ✔️ ✔️ Advanced Memory Scanner ✔️ ✔️ ✔️ Anti-Malware1 ✔️ ✔️ ✔️ Anti-Phishing ✔️ ✔️ ✔️ Anti-Spam 🚫 ✔️ ✔️ Anti-Theft 🚫 ✔️ ✔️ Banking & Payment Protection 🚫 ✔️ ✔️ Botnet Protection 🚫 ✔️ ✔️ Cloud-based protection2 ✔️ ✔️ ✔️ Connected Home Monitor ✔️ ✔️ ✔️ Deep Behavioral Detection ✔️ ✔️ ✔️ Exploit Blocker ✔️ ✔️ ✔️ File encryption 🚫 🚫 ✔️ Firewall 🚫 ✔️ ✔️ Native 64-bit Support ✔️ ✔️ ✔️ Network Attack Protection 🚫 ✔️ ✔️ Gamer Mode3 ✔️ ✔️ ✔️ Offline Updates4 🚫 🚫 🚫 Parental Control5 🚫 ✔️ ✔️ Password Manager 🚫 🚫 ✔️ Remote Management4 🚫 🚫 🚫 Removable Media Device Control ✔️ ✔️ ✔️ Router Vulnerability Scanner 🚫 ✔️ ✔️ Script-based Attack Protection ✔️ ✔️ ✔️ System Registry Scanner ✔️ ✔️ ✔️ System Settings Restorer ✔️ ✔️ ✔️ UEFI Scanner ✔️ ✔️ ✔️ Vulnerability Shield 🚫 ✔️ ✔️ Webcam Protection 🚫 ✔️ ✔️ WMI Scanner ✔️ ✔️ ✔️ [I'll point out that this is very much a "best effort" by me, and it's possible I got some things wrong. Check with an actual ESET sales person if you have a question about supported features.]
    Notes
    1 Although this program contains the word 'Antivirus' in its name, this is strictly for marketing purposes because that's what most people use as a search term. These programs are all actually beter described as anti-malware programs, and detect adware, agents, bootkits, droppers, injectors, password stealers, potentially unsafe applications, potentially unwanted applications, ransomware, rootkits, spyware, trojans, viruses and worms, just to name a few of the things caught by the software. Today, actual computer viruses account for less than 10% of malware detected on a day-to-day basis.
    2 Also known as ESET LiveGrid (and previously called ThreatSense.Net), this provides real-time threat telemetry as well as assists in blocking certain kinds of malicious software such as ransomware, dangerous web sites, and so forth.
    3 Prevents pop-ups and messages from being disabled while running full-screen applications. Called Gamer Mode in home versions and Presentation Mode in business versions.
    4 This feature is only available in business editions. See this post fore more information.
    5 Blocking of undesirable web sites. Called Parental Control in home versions and Web Control in business versions.
     
    You can view the original post at https://old.reddit.com/r/eset/comments/jghcyy/eset_version_14_for_home_users_released/.

    Regards,

    Aryeh Goretsky
     
  5. Upvote
    Peter Randziak gave kudos to M.K. in Policy not whitelisting spam   
    Hi,
    the problematic domain you reported has been already removed from the cloud blacklist. The quickest way to solve such cases is to send the email sample to nospam_ecos@eset.com (https://support.eset.com/en/kb141-submit-a-virus-website-or-potential-false-positive-sample-to-the-eset-lab#spam) as those are handled almost immediately.
    Also based on the sample we have identified a problem in the algorithm that selects the sender's address from email headers in some cases (Return-path: header), and it will be also addressed by an automatic update.
    Regards, Matej
  6. Upvote
    Peter Randziak gave kudos to Chris_AIS in Policy not whitelisting spam   
    Thanks Peter, very much appreciate the assistance
  7. Upvote
    Peter Randziak gave kudos to MichalJ in MITRE RESULTS   
    Hello, thank you.  And yes, we do have plans to add Linux coverage, in the reasonable future. 
  8. Upvote
    Peter Randziak gave kudos to Marcos in  Email Client Protection   
    No, email protection also use detections from streamed (pico) updates, leverage LiveGrid as well as ESET Dynamic Threat Defense (business versions with EDTD license) to detect malware.
    I'd also emphasize that the term "signature" implies a kind of primitive detection, e.g. based on the hash of a file. However, we rather use the term "detection" which is a pattern that describes the structure or behavior of malware rather than something specific.
  9. Upvote
    Peter Randziak gave kudos to itman in High use of Memory by ESET Internet Security   
    Yes.
    Once you returned to the regular update channel, Eset download modules used on that channel. As far as Internet Module is concerned, that is ver. 1423. The only way you will receive ver. 1425 that contains the memory usage fix is to remain on the pre-release update channel. Once Eset releases ver. 1425 on the regular update channel, you can then switch back to that channel. Again, it may be some time till ver. 1425 is released on the regular update channel.
  10. Upvote
    Peter Randziak gave kudos to peteyt in High use of Memory by ESET Internet Security   
    Eset do recommended people use pre release updates on non production computers. The reason is often they will release new versions for people to test, often fixing issues, and by multiple people using it they can test if it works and also if there are any compatibility issues
    E.g. they could release a pre release update to the main stable channel that could actually have issues but they weren't detected because not many people had used that version. Eset does have quality control, checks etc. But issues can happen, things missed etc.
  11. Upvote
    Peter Randziak gave kudos to Marcos in repair installation option isn't available when starting the downloaded installer again   
    This is not possible without downloading the whole msi installer. After a microPCU update has been applied, the Repair option changes to Export.
  12. Upvote
    Peter Randziak gave kudos to Marcos in repair installation option isn't available when starting the downloaded installer again   
    It was changed in the past. The thing is the last msi installer you may have locally stored may be v12 or 13 so repairing v14 would actually downgrade to v12 or v13 and you'll need to download upgrade to v14 again which is not desired.
  13. Upvote
    Peter Randziak gave kudos to Marcos in repair installation option isn't available when starting the downloaded installer again   
    Actually there is nothing to fix in updates; in order for the Repair function to work we would need to download also the whole msi installer each time the product updates just for the sake of the repair function. That would mean downloading ~55 MB instead of ~5 MB or less. As far as I remember the Repair option was removed / disabled in the past but I'll discuss it with devs tomorrow.
  14. Upvote
    Peter Randziak gave kudos to MarcFL in New license manager online broken   
    Updating Eset NOD32 to the new version 14.1.19  fixes this issue.  You will be prompted to login to your license manager account by Eset NOD32 in Windows after the update is installed and you reboot.
  15. Upvote
    Peter Randziak gave kudos to Marcos in Does Daily Scan slow computer?   
    Any scan, especially on-demand scan takes CPU resources. If it takes only a few minutes to scan your PC, it's ok to scan it once a week. However, with further files being created the scan time may increase substantially, especially if you save big archives to the disk. Personally I don't schedule any on-demand scans since files are scanned upon access and execution by real-time protection and HIPS-based protection modules. That said, an on-demand scan may detect threats in archives, however, in this form the threats do not pose any risk since they would be detected by real-time protection upon extraction from the archive.
  16. Upvote
    Peter Randziak gave kudos to Marcos in Eset SSL Filtering   
    In case of expired certificates the action is left on the browser configuration for better UX.
  17. Upvote
    Peter Randziak gave kudos to RichardT1 in epfw.sys em008k_64.dll BSOD Windows server 2019 Standard   
    No, there arent any scripts with smb shares, Its used as terminal server for 15 zero clients connecting through rdp.
  18. Upvote
    Peter Randziak gave kudos to MichalJ in Currently running the appliance RASA 7.2, would like documentation for migrating to PROTECT Entry   
    Hello @jcy If you have purchased ESET PROTECT Entry, then indeed you should be able to activate ESET PROTECT Cloud.
    Just do the following (if you have not done so): 
    Create EBA account at eba.eset.com  Add your license key there. If you register EBA under the same e-mail that the license was purchased under, license will be added automatically. Once the license is added a tile showing "setup ESET PROTECT Cloud" will appear. You can choose the DC location, and setup your EPC instance.  Once instance is done and running, you can proceed according to the migration manual posted above. Can you please share with me the license e-mail that you have received from whoever sold you the license? Ideally via private message, as the email should have included the instructions. 
    Regards,
    Michal 
  19. Upvote
    Peter Randziak gave kudos to metaller in my.eset.com maintenance 21.4.2021 [FINISHED]   
    Hi all, 
    maintenance has been finished, all portals are up.
    regards
    peter
  20. Upvote
    Peter Randziak gave kudos to metaller in my.eset.com maintenance 21.4.2021 [FINISHED]   
    Hi all,
    tomorrow 21.4.2021 at 8:00 CET my.eset.com will be under maintenance, that will affect all portals included (login, account, parental, antitheft, license manager, passwordmanager).
    You may experience some service outtages, which can take up from 8:00-12:00CET.
    regards
    peter
  21. Upvote
    Peter Randziak received kudos from MichalJ in Do I need a new license?   
    Hello @noorigin,
    ECA is now ESET PROTECT Cloud, see https://support.eset.com/en/kb6889-eset-protect-cloudwhats-new for details.
    To use ESET PROTECT Cloud an eligible license is required https://www.eset.com/int/business/solutions/security-management/#purchase
    I would contact your ESET sales department to check what is the best option for you to upgrade your license to ESET PROTECT Cloud one...
    Peter
  22. Upvote
    Peter Randziak gave kudos to MichalJ in Access to multiple ESET Protect Cloud tenants   
    Hello @Ufoto
    As of now, this is indeed not possible. I assume, that you are a reseller, and you have more than one customer, that has their own EPC instances. As of now, you will have to have a different aliases for every such instance, as one "EBA USER" can be linked only to one EBA instance, and one EPC Instance. 
    We are working on a new reseller focus portal, which will allow you to have a "service level login" to all your customers EPC instances. So yes, there is plan to add multi instance access, however I can´t confirm exact timeline at this moment. But our target experience is similar to the one you are referring to. 
    Regards,
    Michal 
  23. Upvote
    Peter Randziak gave kudos to TomasP in Is there a screenshot of ESET Endpoint Antivirus 8 GUI for Linux 8.0.3.0?   
    Hello @Serial.com, no need to get overly defensive here.
    @MichalJ is one of our top people and when he asks for the purpose of one's question, it is always to better understand what problem the customer wants to solve, so that his answer can be as tailored to one's specific needs as possible.
  24. Upvote
    Peter Randziak gave kudos to foneil in Is there a screenshot of ESET Endpoint Antivirus 8 GUI for Linux 8.0.3.0?   
    We also have the Knowledgebase article "What's new in ESET Endpoint Antivirus for Linux (8.x)", and under the Release Notes section we have the new feature changelog items listed, and there's a screenshot of the new GUI:
    https://support.eset.com/en/kb7874 
    Other GUI images (we only included the one) are attached also. 
    Furthermore, if you see a KB or Online Help article that is missing information, media, etc. or you something wrong or something you would like to see expanded or clarified, you can request it by clicking the "Was this information helpful" link and submitting feedback -- believe it or not, we (I) read those user comments and make content updates from them. 
    https://support.eset.com/en/kb7874-what-s-new-in-eset-endpoint-antivirus-for-linux#article-feedback-trigger
     


  25. Upvote
    Peter Randziak gave kudos to Matus in Endpoint for macOS - protect configuration   
    Hi Kostadin,
    If you set policy via Protect, you can't change that locally. 

    Password protected settings are meant in case you're not managed or some settings are not managed... If you set every setting like that (even defaults) from Protect, user can't change that.
    On Mac, ESET Agent password protection is not present. To limit/protect against uninstallation ensure, that users are not administrators (root access) of a machine. In UNIX world, root can do everything. 
×
×
  • Create New...