carmik
-
Posts
211 -
Joined
-
Last visited
Posts posted by carmik
-
-
Hello,
we've got an ERA 6.5.522.0 installation on Windows, that was originally performed with Microsoft SQL. Since we had to upgrade to ESMC 7.x, we were considering upgrading to a ESMC VA appliance (which is MySQL-based). Is such an upgrade possible? That is, can an ERA 6.5 MS-SQL backup be converted properly for import to a 7.x MySQL database?
-
Also please note the need to go extra-conservative here: this is the ESMC VA server I'm talking about. I can recall at least 3-4 times whereas updating the server actually broke it and had to restore the entire VA from a previous backup...
-
-
Thanks Marcos, just what I was looking for!
-
For the record, I found the feature immensely useful, especially while upgrading my systems.
-
Hello,
got this ESMC VA server that was upgraded (no migrate) from 7.1. It indicates that it needs an operating system update, but I'm offered two options: update operating system and update operating system (custom settings). I recall I could find info about these two options, but now I can't find anything that explains the difference.
Could you point out some links and/or advice on which option I should choose? Thanks in advance!
-
Just updated my ESMC VA to 7.2.2233.0 and discovered that multiple sorting as per the following does not work.
My ESMC server details:
ESET Security Management Center (Server), Version 7.2 (7.2.2233.0)
ESET Security Management Center (Web Console), Version 7.2 (7.2.221.0) -
On 2/11/2020 at 1:33 PM, carmik said:
I'm happy to say that the issue seems to be resolved on the PCs I've made a test run on. Furthermore, on Windows Server 2003 AD, it suffices to create a new gpo with a startup script the fix file itself, provided that the file is placed in files section of the gpo. It ran via group policy without issues on 3 systems, so I'm now deploying globally. Will let you know how that goes.
@Marcos good news and bad news: ran certfix yesterday via GPO on around 150 PCs. At the time went smoothly, all clients have started updating virus bases and messages about phishing not operational have disappeared from all. Status on ESMC console was either all-ok or yellow (due to ESMC agent being an older version for example, nothing serious).
Today, I've received at least 3 calls from users whose systems I personally checked that were ok. In all 3 cases:
* the phishing problem came up
* along with a new one, pop/http scanners do not work
So far it's 3 systems, not sure if this is a regression of some sort. WIll install 6.5.2132.5 as per:
https://support.eset.com/en/alert7396-legacy-products-startup-issue
-
-
2 minutes ago, Marcos said:
Please provide the files from the IPM folder.
Hoping that I've not deleted them yet, will do so in the evening. Ok to PM you a link to my MEGA share?
Just now, NicoW said:@carmik the uninstall log says yes.
Expected so, then perhaps try the following:
4 minutes ago, carmik said:Suggestion: with nod32 already installed and the issue existing, enter safe mode, only to delete those files residing under IPM. Is the issue resolved in that scenario?
-
1 hour ago, NicoW said:
@carmik you can try a complete uninstall in save mode with the eset uninstaller. then install again and get into the settings.
on my pc, nod32 was working for ~10min after reinstalling.
Does the ESET uninstaller delete the c:\programdata\eset directory as well?
If I were to enter safe mode, I'd do so to eradicate the actual cause of the problem, ie the files residing under c:\programdata\eset\eset security\IPM
Perhaps the issue appears even on clean installations: upon execution of a license-expiring ESET app, c:\programdata\eset\eset security\IPM gets populated and causes the issue. In this case safe mode cleaning with the uninstaller won't help (since upon new installation the entire C:\programdata\eset directory will be re-created along with problematic IPM entries).
Suggestion: with nod32 already installed and the issue existing, enter safe mode, only to delete those files residing under IPM. Is the issue resolved in that scenario?
-
What I meant is that in order to get to advanced setup, you must be able to open the eset application window; if you have this issue, you simply can't!
-
-
3 hours ago, Marcos said:
Please try to move the folders 2,3 and 5 to a different folder in safe mode, e.g. create c:\IPM and move the folders there.
That solved the problem in all 3 systems I had issues with.
-
3 minutes ago, NicoW said:
I found DMP Files in C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps
FYI, no such folder in my setup.
-
I've opened a ticket already, do you want me to pm you the ref number? For the record I re-posted some of the information you've asked because I was looking for them in Program Files, instead of ProgramFiles.
Is it a problem if I do the safe-mode move on my daughter's system? I'd like to avoid shutting down my main rig...
<offtopic>There is a problem with your ticket submission system, it does not accept mailboxes of the form mailname+alias@gmail.com. It treats the plus sign as an invalid character. This is incorrect handling as per the SMTP specification. Due to the bug right now, my browsing is very slow for some reason. Google "plus sign in mail", there's a Rutgers CS link that contains both informal explanations as well as the BNF of RFC822 (IIRC) which clearly shows + is a valid character, and widely used in Google to create pseudo-emails.</offtopic>
-
20 minutes ago, Marcos said:
Are there any dump in "C:\ProgramData\ESET\ESET Security\Diagnostics"?
There is an ECP directory, but it is empty.
QuoteIs the license file in "C:\ProgramData\ESET\ESET Security\License" changing?
Can not tell, sorry
QuoteDo you have any files in "C:\ProgramData\ESET\ESET Security\IPM"?
There are 3 directories, 2, 3, and 5.
-
1 minute ago, Marcos said:
Do you actually have the latest v13.0.24 installed?
100% sure!
-
19 minutes ago, Marcos said:
We have done so but didn't encounter any issues with gui. We'll need ESET Log Collector logs
I'll open a ticket right afterwards, as discussed.
-
@Marcos
I think perhaps you should try to reproduce this in your lab, with a license close to expiration... -
Just checked my son's and my daughter's laptops, which have the same windows and the same nod32 and license: the same issue is exhibited!
-
5 minutes ago, NicoW said:
Hi!
Yesterday i had the same problem. My License will expire in 13days.
the icon was also changing every few seconds. if i open the Gui, it closes instantly.. after a few trys the icon was dead.. i can't click on it any more. Seconds later my PC was complete offline. i also cannot start any system programs or do a reboot.
i hit the reset button. i logged back into windows, and jumped into the systemsettings as fast as i can and uninstall NOD32. Afterwards all programs works perfect. i tried again to install NOD32 (with live installer). NOD32 did an update and make his first PC Scan. All works perfect for the moment. Minutes after the Scan has been finished, my PC goes offline again.
Yes, this is exactly what I've been encountering. @Marcos, since @NicoW stated that he corrected things by pushing back the date, could this be related to the issue encountered on Endpoint Security 6.5, some kind of regression?
@NicoW can you also open a ticket and provide logs, as discussed above please, to accelerate a solution?
-
I'm happy to say that the issue seems to be resolved on the PCs I've made a test run on. Furthermore, on Windows Server 2003 AD, it suffices to create a new gpo with a startup script the fix file itself, provided that the file is placed in files section of the gpo. It ran via group policy without issues on 3 systems, so I'm now deploying globally. Will let you know how that goes.
-
@Marcosafter running this tool manually on a XP box (6.5.2132.1):
1) Endpoint Antivirus seemed fixed, but the fix window remained open for some reason. Is that expected behaviour?
2) Before applying the fix, I had the system removed from my ESMC console (VA, latest version). I expected that the system would reappear in lost and found, after applying the fix. It doesn't and I'm a bit clueless on what happened here. The system does respect the "use specific proxy to download ESET updates" policy, as I can watch from running netstat -a -p tcp. But it is invisible on the ESMC console (tried searching for it with system name and ip address). Has anyone else encountered something like that?
Upgrading normal ERA 6.5.522.0 MS SQL-based to ESMC VA (MySQL-based) possible?
in ESET PROTECT On-prem (Remote Management)
Posted
In that case, how would one go to update from 32-bit ERA 6.5 to 64-bit ESMC? Can I backup the database and certificates, and feed them into a 7.1 installation?