Jump to content


  • Posts

  • Joined

  • Last visited

Everything posted by Shafiq

  1. @Nightowl Thank you very much.. rules are working.
  2. Hi There, I want to create firewall rule to allow traffic for application located on "C:\Users\userxyz\AppData\Local\test\Testing\Test.exe" How can I create rule for 50 users because Path will be different for different users. Example, for user 1 it will be C:\Users\userabc\AppData\Local\test\Testing\Test.exe" and for other will be C:\Users\user123\AppData\Local\test\Testing\Test.exe" Product: ESET endpoint security for windows 7.2.2055.0 ESET Security Management Center (Server), Version 7.1 (7.1.717.0) ESET Security Management Center (Web Console), Version 7.1 (7.1.393.0) Thanks
  3. How can I create Web protection email alert notification. In security management center, I gone to Notification ->new notification->Configuration->Category. I don’t see Web protection category to choose. Products: ESET Security Management Center (Server), Version 7.1 (7.1.717.0) ESET Security Management Center (Web Console), Version 7.1 (7.1.393.0) Thanks.
  4. Hi Marcos/ESET, I have email in Mail quarantine in Mail security for exchange. I want to add email notification to recipients that their email is in quarantine, so that if they wish they can release the email. Please let me know is this possible. Thanks.
  5. Hi ESET, im not able to activate ESET file security on Windows 2016 server using ESET security management center. below are the logs : Error: CUpdatesModule [Thread fe8]: PerformUpdate: Module update failed with error: Server not found. (error code 12547) Warning: CPushNotificationsModule [Thread 13c4]: Failed to configure EPNS resource (retrying in 21600 seconds): Error calling PNS API 'PnsRegisterClient' (return code = 19108) Licensing; ESET File Security: Activation was not successful. (Could not reach activation server. (ECP.25))
  6. Hi marcos, Thank for the reply. I’m taking about the actual user not spammer. For example, if user A email gets into quarantine or email is blocked in Mail Security, is it possible to notify user A.
  7. Hi There, If an email is quarantined in ESET Mail Security, can that particular user will be notified in email notification. The reason for asking is, user should have information that his/her email has been deleted/quarantine and if they wish they can ask for release of that email. Windows Server: Windows server 2012 ESET Mail Security: ESET Mail Security 7.0.10020.0
  8. Hi Marcos, it is URL. I will send the URL in private message to you Thanks
  9. Hi There, One of the pc detected threat “JS/Adware.StreamItOnline.A. I’m seeing this alert few times from past couple of days. Action taken is “connection terminated”. Do I have to remove chrome browser and install again to remove this threat. Below are the details Threat name: JS/Adware.StreamItOnline.A Threat Type: application Threat handled: Yes Process name: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Hash: 50D0A509FEE79452AB3A13686CA8C49AB91948A2 OS: windows 8.1 ESET product: ESET Endpoint Security 7.1.2045.5 Detection engine version: 19932 (20190828) Scanner: HTTP filter
  10. Hi, Is it possible to create a rule to block application (eg: chrome browser) remote communication in ESET File Security? If yes please provide step, how to do it. OS: Windows 2012 R2 ESET File security Version: 7.0.12016.0
  11. Thank you Marcos, The reason was asking about Detection engine 18638 was because This was the detection engine found on computers. Thanks for the confirmation. @itman …. I had informed this to my management This malware will be detected by ESET (based on Virustotal result) but I was still told to get confirmation. We can close this thread …. Thanks you again to Marcos, itman, and aranud87
  12. Thanks aranud87, I checked all the hash values mentioned in post and found all in Virus total. But i need ESET to acknowledge or confirm that this hash values will be detected by Detection Engine 18638. I hope someone from ESET can confirm this. Thank you.
  13. Hi There, Can you please let me know is below hash values are included in ESET Detection Engine 18638 Hash SHA-1 ******************************************** e669392b950af703197afaac68c6b7d928298ab9 7fdae8b4f6bc8da8d5b9ea75d86ff328386fd7ce 240357530fdd0daa241b25e074e026df63329b66 36239b74133031b55ce4c71c3392784ccaec94f6 215b4e2702052c050213c2500fdea8dd7a0ace5b aff14d9cf65053104903733776bfcedbfb2036be 5125d7b9609a74c8f7dd4187a6da8dfb97312769 d6e6853450f2fbb2e231bcc5a879c61bc4dc1e52 Products: ESET Endpoint Security 6.6.2064.0 ESET File Security 7.0.12014.0 OS: Windows 8.1 and Windows server 2012
  14. Hi, Is it possible in ESET windows file security 7, IDS (network attack protection) to monitor certain IP address or block those IP address? product: Windows eset file security 7 Thanks.
  15. edf.eset.com certificate was blocked in SSL/TSL protocol filtering (under WEB and EMAIL). Allowing it resolve the issue.
  16. Hi, Issue resolved by allowing ESET certificate. Any chance you are using ESMC 7.0? No, we are using ESET ERA 6.5 ESET Remote Administrator (Server), Version 6.5 (6.5.522.0) ESET Remote Administrator (Web Console), Version 6.5 (6.5.388.0) Thank you
  17. Hi ESET, ESET license from ERA is not synching with the ESET license server. I checked the trace log (C:\ProgramData\ESET\RemoteAdministrator\Server\EraServerApplicationData\Logs) and found Error: 2018-10-28 08:53:22 Error: LicenseModule [Thread 1540]: LicenseModuleHelper: SyncPools: Failed to retrieve the linked pools CEcpCommunicator: HTTP send of XML request failed, error=20031. I can open https://edf.eset.com/edf on web browser and below message displayed <?xml version="1.0" encoding="UTF-8"?> <ecp:message xmlns:ecp="hxxp://www.eset.com/2012/02/ecp"><ecp:response><code>20101003</code><message>Unsupported Content-type: unknown</message></ecp:response></ecp:message> Please help me resolve this and let me know what IP address and port number required for communication for ESET license server.
  18. Thank you very much. I have activated from ERA and run the update. Update has been completed successfully. I will monitor for next few days. Again thank you so much ESET
  19. Thanks for the help I download the license legacy file and able to import the license but when I checked the license information using ESET web interface it is giving me information of license details (total license of computers) I created the offline license for Linux file server in ESET license Administrator, but when I download it is downloading in .lf format (no legacy download option available (.lic)). I’m not able to update virus signature. I’m getting error Invalid Username and/or Password. (Linux file security license activated using option 1 mentioned above) Note: Legacy option is enabled on ESET license administrator in Setting
  20. I have installed glibc.i686 which was one the dependencies and now when i try to start the esets service i get license not found error. I tried license activation using ERA but i get same error. Please help me how to resolve this issue. administrator@test-pc-test ~]$ sudo systemctl status esets.service -l ● esets.service - ESET Scanner Daemon Loaded: loaded (/usr/lib/systemd/system/esets.service; enabled; vendor preset: disabled) Active: failed (Result: exit-code) since Thu 2018-10-11 13:03:05 +03; 1 day 2h ago Process: 5072 ExecStart=/opt/eset/esets/sbin/esets_daemon (code=exited, status=69) Oct 11 13:03:05 test-pc-test systemd[1]: Starting ESET Scanner Daemon... Oct 11 13:03:05 test-pc-test esets_daemon[5072]: error[13d00000]: Cannot initialize scanner: License not found Oct 11 13:03:05 test-pc-test systemd[1]: esets.service: control process exited, code=exited status=69 Oct 11 13:03:05 test-pc-test systemd[1]: Failed to start ESET Scanner Daemon. Oct 11 13:03:05 test-pc-test systemd[1]: Unit esets.service entered failed state. Oct 11 13:03:05 test-pc-test systemd[1]: esets.service failed. Thanks
  21. I have disabled SELinux but issue do not resolve ***************** # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - No SELinux policy is loaded. SELINUX=disabled # SELINUXTYPE= can take one of three two values: # targeted - Targeted processes are protected, # minimum - Modification of targeted policy. Only selected processes are protected. # mls - Multi Level Security protection. SELINUXTYPE=targeted ************************************ administrator@test-pc-test ~]$ systemctl status esets.service ● esets.service - ESET Scanner Daemon Loaded: loaded (/usr/lib/systemd/system/esets.service; enabled; vendor preset: disabled) Active: failed (Result: exit-code) since Thu 2018-10-11 10:22:34 +03; 9min ago Process: 2976 ExecStart=/opt/eset/esets/sbin/esets_daemon (code=exited, status=203/EXEC) Oct 11 10:22:34 test-pc-test systemd[1]: Starting ESET Scanner Daemon... Oct 11 10:22:34 test-pc-test systemd[1]: esets.service: control process exit...3 Oct 11 10:22:34 test-pc-test systemd[1]: Failed to start ESET Scanner Daemon. Oct 11 10:22:34 test-pc-test systemd[1]: Unit esets.service entered failed s.... Oct 11 10:22:34 test-pc-test systemd[1]: esets.service failed. Hint: Some lines were ellipsized, use -l to show in full. ******************************************* glibc version is: ldd (GNU libc) 2.17 4.1.12-124.20.1.el7uek.x86_64 kernal version Not sure where is the problem
  22. Thank you for the help ... Thanks
  • Create New...