RangerZ

I am looking for any help with what I am being told is a security issue. I do not know what or where it is. We use Intuit products (Lacerte Tax and QuickBooks). About a week ago Lacerte began requiring 2FA for all users on our network EVERY time they login. We do not have this configured. We thought it was Lacerte related, but see this across all the Intuit on line products. If I login from my home LAN I do not have this issue. They indicate that this has to do with their systems seeing our client as a medium security risk (or similar). As stand alone workstations and users running on our RDS server both have the issue, I am skeptical that it is a server problem. I am wondering if it may be something in our security configuration, as this would impact all clients equally. ESET is a common thread across all the impacted devices. Does anyone have any thoughts or seeing similar behavior?

OK, This is much more like what I want. Two more questions please 1 - If I exclude a folder as I Performance Exclusion am I being redundant by excluding a file in the path as a Process exclusion? 2 - As I apparently can export the Performance exclusions as a file and apply to other users (Excellent!) is the %appdata% a valid expression. The tool accepted the string, but not sure how to test it actually works. Thank you Marcos

Unfortunately "Process Exclusions" are not truly robust enough. I am trying to exclude an index file for my Tax application with an extension of P9 (OPINDEX.P9) and I can not. (File vs a Processs I guess) It appears that we can do path exclusion on our Windows Server with the ESET File Security product. From the manual, it's unclear if I can do this with ESET Endpoint Security. Please consider including path exclusion in a future update.

Apparently I was on v 7.0.2091.0 which did not include the option. Now on the newest version which contains the feature I am looking for. Apparently this does not support the use of wild cards, which would make things easier. EG: C;\Lacerte\*.* but hopefully this will do what I need. Thank you! I need to test but think I am good.

We are using the Lacerte Tax programs by Intuit and appear to be having issues with ESET Endpoint Antivirus locking Lacerte files. Intuit recommends a list of files and folders to exclude from scanning, but I am unable to find a way to configure scanning exceptions other than a file type (extension). Does this product support exceptions and f so how do I configure them?

I am unable to find a feature comparison sheet between ESET Endpoint Security and ESET Endpoint Anti-Virus, but I have seen the individual pages Am I correct Endpoint Security would have replaced the Firewall also. Do I need this with the server product?

Marcos, Thank you for your follow-up. Please see attached. I think I am in error regarding both products running. I saw the Security Overview and inferred that we had MS Security running. I did not drill down on Virus and Threat Protection to see it is using ESET (We are new to 10). With the product we own I believe we are relying on Windows Defender firewall. Not clear if we should have purchased ESET Endpoint Security as opposed to Anti-virus. These are for laptops which may run remote over a (Meraki) VPN. Current pricing appears to be the same. Any additional thoughts are appreciated. We have also just installed server 2019 and have ESET File Security for Microsoft Windows Server running there.

I have a handful of clients with ESET Endpoint Antivirus which was installed on Windows 7. I upgraded 2 of these clients to Windows 10 and it appears both Windows Security tools and ESET are both running. What is the best way to disable Windows Security tools and\or Defender Firewall? On clients not yet upgraded, should I uninstall ESET before the upgrades?

I am mostly concerned about Phishing. MS does not catch all this, I get 1-2 a day. That said, not seeing ESET move anything into the Infected Items folder. Can you please point me to the appropriate help for understanding the config for Endpoint AV 7.0.2?

I am unclear under what circumstances a topic becomes archived, but the issue persists https://forum.eset.com/topic/16463-ms-outlook-2016-sync-issues-and-confilcts/?_fromLogin=1 I have now upgraded to 7.0.2 and I guess still waiting for 7.1. (???? date ????) I have been updating my client PCs the last few weeks and deleting as many as 23000 items in the "Sync Issues" folders.

Thank you Marcos for the info. We have an Office 365 E3 subscription which includes malware, connection and spam filtering. ESET is basically set at default. It does include "phishing", which is my highest pain point today. I would like to believe that MS is pretty good at this, but not clear. I am definitely getting a few phishing emails a day. I can say that I have never had any email in my "Infected" folder (which I believe is the ESET created folder), but not clear that the product even attempts to identify Phishing mail (as opposed to phishing sites) Is ESET helping me with email?

Running Office 365 on MS Exchange Server. Finding that most mail gets copied to Sync Issues=> Conflict folder. Reading leads me to believe the ESET is writing something to the file during it's scan. I have seen some older post for similar issue and the 2 solutions were to disable email protection and to disable wring the tags (Append tag messages...). Tried disabling the tags which did not resolve the issue. Expected this as tags are only being written to infected items. Disabling email scanning is not really a acceptable option, but does address the issue. I did disable ESET and the conflict issue appears to stop. FWIW, we also have a "Shared" mailbox which we send a BCC of all in and out mail to. Much of what I see in my Conflicts folder is mail from other users which is really annoying and voluminous. When I disable my email checking I do not get other users Sync issues in my folders. Are there any current options to still scan email, but not generate all these conflicts? I have no issues with generating messages for problem mail of any type, but the good stuff I would like to remedy. ESET Endpoint Anti-virus: 6.6.2072.2 Example of Conflict Resolution for a rejected item: 15:40:21 Message class: {SU:IPM.Note} 15:40:21 Mail Conflict Resolution 15:40:21 Local subject: {SU:test 6} 15:40:21 Remote subject: {SU:test 6} 15:40:21 Local Message Entry ID: {CB:70, LPB:0x00000000EB6D72072C208048BDF76C59F37403730700D645F051D052E04DAC3C6B961ADF821B00000000010C0000D645F051D052E04DAC3C6B961ADF821B0002D86401800000} 15:40:21 Remote Message Entry ID: {CB:70, LPB:0x00000000D9A74E6FE681954597CD9A398681E9820700D645F051D052E04DAC3C6B961ADF821B00000000010C0000D645F051D052E04DAC3C6B961ADF821B0002D86401800000} 15:40:21 Local Message ChgKey: {CB:20, LPB:0x91C8ADB300D96141B63EC40395AB03CE0036E756} 15:40:21 Remote Message ChgKey: {CB:22, LPB:0xD645F051D052E04DAC3C6B961ADF821B0002D8B6198D} 15:40:21 Local Message PCL: {CB:44, LPB:0x1491C8ADB300D96141B63EC40395AB03CE0036E75616D645F051D052E04DAC3C6B961ADF821B0002D8B6198A} 15:40:21 Remote Message PCL: {CB:23, LPB:0x16D645F051D052E04DAC3C6B961ADF821B0002D8B6198D} 15:40:21 Checking local modifications 15:40:21 Compare property: 0x007D001F 15:40:21 Ignore property: 0x3FFA001F 15:40:21 Compare named property: EsetMessageFlag 15:40:21 Compare named property: Emon Scanner Build 15:40:22 Getting remote properties 15:40:22 Checking remote modifications 15:40:22 Compare (conflict) property: 0x007D001F 15:40:22 15:40:22 15:40:22 Not equal (conflict) property: 0x007D001F 15:40:22 Local modification: {19:40:17.0073 20/08/2018 [DD/MM/YYYY]} 15:40:22 Remote modification: {19:40:21.0684 20/08/2018 [DD/MM/YYYY]} 15:40:22 Conflict generated, remote item is winner

All the enabled or inactive add-ins are the default MS add-ins, but I am researching these and may disable some of them. The user indicates that she has only seem this once, but I think it happened shortly after I installed the app, hence why it is forced to load. As such, it's not easy to trouble shoot. I guess that's my real question, is forcing it to load an issue or symptom of another issue. Is there a log anywhere which records the loading of the addin?

ESET Endpoint V6.6.2072.2 Windows 7 64Bit Outlook 2016 (office 365) V 1708 (Build 8431.2215 Click to run) We have one user who get the following message ESET Outlook Add-in This add-in caused Outlook to start slowly. It wasn't disabled because it's in the always enable list. The time to start is 1.482 seconds. We are not aware of any issues related to sending of email as in https://forum.eset.com/topic/14607-outlook-add-in-problem/ Are there any issues related to forcing this add-on to run that we may wish to be aware of? What may be causing the delay, which I do not think impacts the user in any practical way, other than the message.