mallard65

See my post regarding ESET not appearing in context menu.
GP
 

EMS checks for a license registered to the email address used by the Google Play account on the device. If no license is found, a freemium version is activated. If you use a Google Play account associated with a different email address than your ESET registration email address, you can enter the license key yourself in the main menu -> License to activate a paid version of the product.

The obfuscated javascript is JS/Adware.ClickAdu, the detection is correct, it's NOT a false positive. There are several different detections and blocks of this script so the easiest thing to avoid detections and block would be by disabling protocol filtering or http/https scanning which we cannot obviously recommend for security reasons.

Is the device actually locked by ESET? Did you enable SIM card matching and changed the SIM card or deleted any contact on the SIM card?

What website are you referring to and how do you know it was 100% not compromised?

Hello,

Guest accounts are meant to be used to answer quick questions about the software that do not require detailed information and analysis.

In order to investigate your issue, please do the following:
Create an account on the forum and then report the issue in the appropriate forum. Give relevant information in your post about ESET's software, such as which of ESET's programs you are using and its version. Give relevant information in your post about the device you are running ESET's software, such as the operating system it is running and its version.  If you are using a smartphone or a tablet with a WWAN connection, included the brand and model of the device and the carrier you are using. Include a screenshot of the error or warning displayed by ESET's software on the device, plus relevant log file entries from ESET's software showing what was logged when visiting the site. An examination of the the oann[.]com site on VirusTotal (at https://www.virustotal.com/gui/url/6824f68ad245d999b2463e483d8c4893dd57af4553a598eca05e4038fe84c76d?nocache=1) reveals that none of the 90+ security vendors are currently reporting any detections on the site, so it is not particularly clear what sort of issue you are experiencing.

Regards,

Aryeh Goretsky
 

https://www.google.com/chromebook/ :
Chromebooks aren’t like other laptops. They run Chrome OS, an operating system made by Google.
Chome OS is not Android. It is not a supported OS.

Our position is clearly laid out on the linked page, so with that being said, we'll close this topic before it gets nasty and political.

"What have the citizens of russia done to eset or anyone?"
As for me, I believe, the government is there to do things on behalf of me, and if so, every citizen of every country is responsible, not only their presidents.
I suggest to not continue this thread, it could lead to political debates, and ESET security forum is not the right place for that.

Not to worry, @URBAN0, it was clearly not posted with bad intentions.

I've used many AVs in the past but prefer Eset.
I should however warn you that this might be classed as against rule 15 of the forums
15. Do not post "A vs. B" or "Which product is best?" type messages in the forum.
 
 

The issue has been pinpointed and the conditions for displaying the notification were adjusted so that it doesn't appear in products using an expired license.

You'd better ask AV-TEST why they chose not to include ESET in their test given the AV-TEST's statement:
There are many reputable testers, such as Radicati, Forrester, Mitre as well as AV-C (EPR/EDR tests) that show ESET's products performing extremely well.
We recommend that you try various AVs and then choose one that works the best on your system.
Having said that, we'll draw the topic to a close.

Problem with sites like these is they cannot validate the license so someone may sell a license to more than one user when it was only purchased for one. The license will then automatically get blocked as it detects more people using it than should be. For this reason it's always recommended to purchase from Eset itself

The above license leaked and therefore was canceled. Please purchase a license. It was registered to a completely different address (sb.......8@k...sa.com)

Please ask for a refund and purchase a new license from an authorized ESET reseller.
While the license was issued for ESET Internet Security, the email states it's for ESET NOD32 Antivirus. Also it's registered to a completely different email address as I have already mentioned.

The application in question is classified by ESET as a potentially unwanted application (PUA). For more information about what PUAs are, please read https://support.eset.com/en/kb2629.
There's also a section about system cleaners and registry optimizers :
Potentially unwanted applications – Registry cleaners
Registry cleaners are programs that may suggest that the Windows registry database requires regular maintenance or cleaning. Using a registry cleaner might introduce some risks to your computer system.
Additionally, some registry cleaners make unqualified, unverifiable, or otherwise unsupportable claims about their benefits and/or generate misleading reports about a computer system based on the results of a "free scan". These misleading claims and reports seek to persuade you to purchase a full version or subscription, usually without allowing you to evaluate the registry cleaner before payment. For these reasons, ESET classifies such programs as PUA and provides you the option to allow or block them.

I scanned your domain, hxxps://librilettiscritti.it/, at Quttera. It contains 10 malicious files. The scan report: https://quttera.com/detailed_report/librilettiscritti.it , contains all the detail you need to find the malicious code references.
If you don't have the technical skills to remove this malware, you will have to hire someone; e.g. Quttera, to remove the malware for you.
In your case however, it appears this would be the webmaster responsibility since the malicious code is being injected from a remote source. That is, the web server is not properly secured and is probably infected.

This is why I think having somewhere with the module version numbers could be handy - as sometimes people think theirs are out of date and not updating properly because someone's is higher as they are using pre-release updates

Hello @peteyt
An excellent suggestion on something that should have been done ages ago.

Hello @peteyt
An excellent suggestion on something that should have been done ages ago.

To avoid things like this coming up again and again would it be possible to have a webpage which would show all the current modules for normal and pre release @Marcos
This would also allow people to know if they had an issue

Actually, the web site is heavily infected; 30 malicious files found.
Refer to this Quttera web site scan report: https://quttera.com/detailed_report/rbs-egypt.com
As such, the entire web site should be blacklisted by Eset.

I liked this warning, it should have a fixed topic of information like this. would be a good suggestion.

https://www.cuisineaz.com/ - not blocked by Eset
https://actu.orpi.com/optiext/optiextension.dll?ID=5BA5zNni8NUJhDLuPut8c9%2BB57LFL2ysPCjjhh_yPcuaVCejXTFVYHgjbIiwl6t38pSzVTj8JaXAgV1XTiMQjbRiYO%2BHA - expired certificate; blocked by browser.
https://t.news.cuisineaz.com/c/?t=d119c7e-e-3z813-fmzl-c2wiaw - not blocked by Eset
https://www.societe.com/societe/i-tech-809565930.html - not blocked by Eset
https://www.radins.com/budget/faire-des-economies/magasins-destockage-economiser/18900 - not blocked by Eset