Jump to content


  • Content Count

  • Joined

  • Last visited

Everything posted by Lockbits

  1. Nevermind, I found this calculator: https://help.eset.com/eei/1.5/en-US/?hardware_requirements.html
  2. Hi @JamesR! You right, it seems one of those random coincides of life. The server RAM is ok (8 GB of 24) but disk is in its limit. Currently there're 14 GB available of about 149 GB. I deleted some files and now there're 15 GB available and computers started reporting again. How many free space do you need for EEI? There're about 140 computers reporting to EEI. Thank you.
  3. Hello guys, Several months ago we reported a bug that caused the endpoints to stop reporting to EEI due to a change in time in Chile. More on this issue: On Saturday, April 3, the clock was back by one hour. The time zone was changed from GMT -3 to GMT -4 and it started failing again. The customer is using latest version that supposedly fixed this bug (1.5.1512) but it's failing again with this message: 1-04-07 16:59:39 015b4 Error: The disk usage or memory limit reached. Can't accept more data. (Device name) 2021-04-07 16:59:39 015b4 Error: HTTP error 503 while processing r
  4. You should use an older version or another Java distribution supported by console. 16 is not supported. We had the same issue as you.
  5. Hi @Kstainton, Thank you. What does it mean that console is in legacy mode? Why this appeared if no change was made? We want to upgrade console to latest version. Is it safe considering this issue?
  6. Hello guys, We've a customer were DESlock console stopped working with this message: Initially we pressed next button: But that didn't resolver the issue as the same wizard appeared again and again as a loop. We moved the content of the backup folder of the path where console is installed to another place and restarted service of console and it started working again but, why this happen? We didn't modified anything. Thanks.
  7. Hi MichalJ, Thank you. We're planing to use GPO. Will it work? The idea is to send a GPO to upgrade ERA 6.5 agent to EPC agent 8. André
  8. Hello guys, We've a customer that have about 1000 seats and they're using ERA 6.5 because it's installed on Server 2003 and there's no possibility to upgrade such Windows and so the console. As they don't have server they're evaluating to migrate to EPC. Is there any way to migrate at least connections from ERA 6.5 to EPC? Thank you.
  9. Hi, Thank you for this tip. It solved some alerts that were caused by Fortinet VPN client (fcdblog.exe) and I couldn't fixed with basic exclusion wizard.
  10. Hello guys, I've two suggestions: 1) The option to apply exclusions for web control detections or "Detected by ESET Endpoint Security product" alerts. We've a customer that is using web control and we configured the product so all blocked websites are logged in EPC console setting the verbosity accordingly. The problem is that this information is also sent to EEI console and this add a ton of unnecessary data and difficult the detection of valuable data. We can disable the verbose level but this will also affect the blocked website being logged and reported to ESMC. I mean this:
  11. Hi Marcos, just for curiosity. Why this signature is WinGo and not Win32/64? Thank you
  12. Hello guys, I hope everyone has a great 2021! We're using EPC and since then the only agent 7 that was reported outdated and was updated from there was the Agent for my macOS. All the Windows agents are reported as updated so if I send an update task nothing happens. The only solution I found so far is to generate a new all in one and to apply the update using this method but it's not ideal. We're using Spanish LA version and never the Japanese. If you need anything else please let me know. Thank you.
  13. Hello guys, The ability to add other type of hashes like SHA256 in order to block them and not only SHA1. Thanks.
  14. Hello guys, Is there any way to migrate from ECA to on-premise ESMC? I think this should apply https://support.eset.com/en/kb6729-certificate-migration-in-eset-security-management-center-7x but I'm not sure as I don't know if it's possible to obtain a copy of ECA's certification authority and agent certificate. Thank you.
  15. Hello guys, I've a friend that has an iPhone running iOS 14.1. Twenty SMS charges sent to telephones located in Taiwan and Germany appeared on his phone account. When checking the messaging application, those 20 messages were indeed sent from the iPhone, however, the user did not send them nor he knows those numbers. Could it have been an SMS Trojan? How to know which application sent these messages? There's one message pointing to 20 numbers. I know that there're many SMS Trojan for Android but for iOS AFAIK it's the first case. The iPhone is not jailbroken. I want to determine
  16. Hello guys, Thank you for the help. Customer is updating to latest version of EEA and EEI and moving their computers to ECA in order to have maximum visibility. They also know that need to install updates ASAP.
  17. Hello guys, We've a case where a server is working normally but one shared resource was encrypted by a ransomware. We think it was another computer that was infected because the server doesn't have encrypted local data. In order to detect which computer was the culprit, we deleted all the networks and local users permissions over this shared resource and copied some files. As the data remained intact we starting adding one per one network user in order to see which is the culprit and so far so good. Our surprise was when we added the local administrator user to the shared resource the con
  18. Hi Mirek, I sent you a private message. Thank you.
  19. Hi Peter, In case we need to modify or change the certificate, it's necessary to enroll all devices again? Or the certificate can be changed without affecting connection to current smartphones?
  20. Hello guys, We have a customer with the following issue. There're two Android devices that were updated to EESA version and these two devices are reporting the following alert to ESMC: I realized that version has the following change: Improved: Certificate security - insecure certificate warning during enrollment + certificate hostname verification (a warning displayed during update or enrollment) How can we fix this certificate issue? The MDM was installed using the standard procedure. Thanks.
  21. Hello, In Chile we changed the hour from winter to summer time and that caused EEI to stop cleaning the MySQL DB correctly: 2020-10-23 00:00:00 03b64 Info: Database cleanup starting... 2020-10-23 00:00:00 03b64 Error: Database cleanup failed on the following SQL error: Sql error 1292. 22007 Incorrect datetime value: '2020-09-06 00:00:00' for column 'l_purge_events_until_upper_border' at row 1. Failing statement: 'CALL procOnRotateEvent( UTC_TIMESTAMP(), ?, ?, ?, ?, ?)' As DB is full no computer is able to connect to EEI anymore: 2020-10-23 14:17:23 00b00 Error: The di
  22. Hello guys, Our customer that is using the MDM with ESMC is having the following issue. In the graphic of the dashboard where you can see the devices that are updated and not, in Endpoint bar the ESMC is considering not only endpoints but also mobile phones. Is this by design or it's a bug? Because there's a graphic bar for mobile phones. Regarding this same graphic, is there any way to limit the information for a certain range of devices and not all devices? In this case it's because the customer wants to know the devices that are outdated but that are being used (home office)
  23. Hello guys, We've a customer that is using the MDM and when we send the task to update to a newer version of ESET Endpoint Security for Android the task fails hours later. How can we update this program remotely? Thanks.
  24. Hello guys, We've a customer where we installed the MDM with public IP address. The device is enrolled correctly and reporting to console however some hours later the Android device stops reporting back to console. If we open ESET for Android in the mobile then immediately it report back again but some hours later the same problem occurs again. It's like something in Android is restricting the connection to console when ESET is idle in the background. Re enrolling the device doesn't work because it said it's already connected. How can we avoid this behavior? Thank you.
  25. Hi MartinK, Apparently the problem is because old agent configuration was password protected. We are trying to make a custom bat for deployment but for the moment it's not working. I password protected my agent with the same password so I can test the bat without going to the customer but not luck. I tried to put the password with and without " and it's not working. If I look at the .ini created by the bat I can saw that password is within the file but agent is not reinstalled with new configuration. ESMCAgentInstaller2.1.rar
  • Create New...