Nightowl

No I didn't install Powershell and the detection is still triggered when that page is visited.

It means that ISP router is vulnerable and it is better to ask for a one that get updated , or to cut the hassle with them since they won't really help you that much, buy a firewall/router that is updated or atleast that you can flash OpenWRT for it and then protect your LAN with it , and let the ISP device work as a modem only.

Weird , your link triggers ESET Endpoint Linux

Make sure your router/firewall at home isn't compromised.

UPnP can introduce security issues , I'd prefer to have it disabled. A portforward from the router to the local LAN address of the computer who have the minecraft server and also you need to make sure that the computer doesn't get a new IP from the router's DHCP so the portforward rule will not break.

That means that your firewall/router is still blocking the connection from passing to your computer. Check this website : https://portforward.com/softwareguides/minecraft/portforward-minecraft/ And then after you can look for your router model and they will explain with screenshots how to properly portforward. Once it's done , then you would see the connections coming to your computer and then ESET will be able to catch them.

Make sure from your router , you portforward to your LAN IP address with the port you specified Remove the rules from ESET , if the connection is passing to your computer from your router , then you should find ESET blocking the traffic through Network Troubleshooter Then you could allow the server through Network Troubleshooter because there you can see what is ESET is blocking / has blocked in the recent specified time.

You can only disable COMPUTRACE on the BIOS settings , but that won't prevent ESET from detecting it further unless you add it to exclusions , but as it's disabled , it's better. There could be a BIOS update for your computer model that will not include COMPUTRACE , you can find more about it in Google , and even they have changed the name as per post here : https://www.dell.com/community/Alienware-General-Read-Only/What-is-computrace/td-p/5557546 The thing is that AVs that will detect UEFI/BIOS threats will not be able to make modifications or changes to there The only way possible to get rid of a threat in the BIOS is by flashing a version that doesn't have it, so different AVs will not give a solution.

Try to put the same port number in both places , Local and Remote And in Local tab , Put the exe of minecraft server And for example if you have a router/firewall , you must also configure it for Port Forwarding , it will be blocking connections before ESET.

As per screenshot , you have enabled the port to be open in LAN and not in WAN which is Remote tab if I am not mistaken.

ESET uses Pico updates which are very small updates to the modules/signatures in short times , which will not cause a big update after a while.

Not a problem , all is good , and glad you solved your problem. The captcha should be just about the VPN's IP and could be possible like you said because you have registered new. ESET is light on resources and with minimum false positives while having a strong protection.

Once you get used to it , it's very compact/light and powerful , and the settings would be found easy after a bit , just need some time to get used to it.

I would just keep them blocked and keep ESET as default , as you are already using it in Automatic mode If it's working now , then I'm glad it's working About captcha , it's because of your nord , it shows more captcha because you are using the NordVPN , thinking that you are spammer or coming to abuse , because from VPN IPs comes lot of abuse to companies sometimes.

Look here https://help.eset.com/essp/15/en-US/idh_wizard_epfw_troubleshooting_type.html Do you see Qbittorrent in the blocked list?

I can confirm this , it's reproducable with Firefox 102.0.1 and this topic page.

For most secure because most of the times ISP equipment aren't updated regularly , I buy a router myself and ask the ISP to put their router as BRIDGE-MODE MODEM , and then use the router I bought myself to protect the LAN , and the ISP's device just work as a MODEM.

Here also there was a malware as a signed driver - https://www.lifewire.com/rootkit-malware-found-in-signed-windows-driver-5190521

If there is no BIOS version without it from the manufacturer website, then your best bet would be is disabling CompuTrace from BIOS , but that won't prevent ESET from detecting it , but atleast it's disabled/not running.

I prefer to be protected by a professional company that has been running for several years , rather than to opt in for using a free AV that was started few years before by a company that cannot fix their security issues inside their own operating system but as you have said it's matter of preferences, Windows Defender before few months , it was possible to completely disable it by a Registry entry , imagine what a talented programmer can do to it.

I've used ESET since v2 which is ages ago and it never failed me honestly , I also protect my family devices with it and at work I use it, but also it's better to tell the people who use the devices/surf the internet to use common sense to not fall into traps or bad links but as an AV engine / internet security , ESET is one of the top among AV companies.

About Kaspersky and Russia that applies to every country and software , the question is to where or which place you want your data to be looked at, NSA was developing tools to hack Windows and still , Kaspersky detected them and uploaded them to their cloud as the program is programmed to do so Yet people were sad that Kaspersky did it's job , but weren't sad that NSA were trying to develope tools to hack people's privacy or whatever the reason was which obviously would have been said to be for defense reasons Doesn't Microsoft gather all data it can about your usage in Windows? There is no evidence that Kaspersky work with Russian government , yet they moved their headquarters to Switzerland, and anyway a security company that big would assist the government , as would any AV company / security company would assist and work with the government specially if the gov asked for their assistance. So if that was Norton or ESET , and automatically it detected the tools and uploaded them to their cloud not knowing this was a government employee since Office cracks were inside that folder uploaded per the story , and then Norton/ESET/TrendMicro whatever other company detected and flagged those tools as malicious So then ESET and Norton or Trend Micro should be distrusted? or well done to that AV , it did it's job to detect an unknown sample. Per the logic here , that for example X person is malicious software developer , he develops one , by mistake he forgets he have an AV running , the AV is programmed smart , picks up the samples because it's set to do so , sends it to the cloud AI , cloud AI decides it's malicious The developer is sad and mad now , and wants to boycott the AV program he installed because it has done it's job. Per the political view , it's also a bad view , since technology shouldn't be mixed with politics , and other countries has done attacks on other countries , but yet we only see news about 1 country, there is a side of media brainwash we shouldn't fall into.

Are we good now to try the v9?, I have several servers that need to be upgraded but I was afraid since I was reading here

@kamiran.asia, it's faster for you to reach the business service for faster response / help more than the forum here.

What itman means is that you copy and paste what occured to you in the detection logs because the attachments cannot be opened by normal users , only by eset staff you can copy and paste the text that appeared on the logs or just simply take a screenshot of it. You can right click the detection of the CoinMiner and press Copy and then you can after that paste it to the forum here.