Jump to content

rgoldman

Members
  • Posts

    54
  • Joined

  • Last visited

Everything posted by rgoldman

  1. I understand. I was just wanting to exclude one of my domains, not powershell completely. Thanks!
  2. No but I didn't want to post it here, it's xxxxx.
  3. An Event Log notification has occurred with the following parameters: Process Name: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe Object URI: https://mydomain.dom/s/MTx56fiz7kKC4No/download Severity: Warning Detection Type: Detection Name: Blocked Object Type: file Action Performed: Connection terminated Restart: no Circumstances: Event occurred during an attempt to access the web.
  4. <?xml version="1.0" encoding="utf-8" ?> <ESET> <LOG> <RECORD> <COLUMN NAME="Time">9/8/2021 10:09:10 AM</COLUMN> <COLUMN NAME="Scanner">HTTP filter</COLUMN> <COLUMN NAME="Object type">file</COLUMN> <COLUMN NAME="Object">https://mydomain.dom/s/MTx56fiz7kKC4No/download</COLUMN> <COLUMN NAME="Detection">Blocked Object</COLUMN> <COLUMN NAME="Action">connection terminated</COLUMN> <COLUMN NAME="User">SHOPTECH\user</COLUMN> <COLUMN NAME="Information">Event occurred during an attempt to access the web by the application: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (F43D9BB316E30AE1A3494AC5B0624F6BEA1BF054).</COLUMN> <COLUMN NAME="Hash">35D8C4E86ECF41973D340BCC02B7DAEC4077106B</COLUMN> <COLUMN NAME="First seen here">8/11/2021 10:09:14 AM</COLUMN> </RECORD> </LOG> </ESET> export.txt
  5. Hi and thanks It says its the HTTP filter, so I'm thinking I need to create a new policy and refresh it.
  6. Hi Recently I have an issue with ESET blocking powershell from downloading a file on my domain/url. It's a bginfo script. I need to allow this to execute but I don't want to allow powershell access to everything, so I need to just allow my domain/url. First I added it to allowed/excluded in Web Protection but doesn't seem to allow it. Now I've attempted to create a firewall rule to see if that works. Any other ideas? Thanks
  7. Thanks @Marcos i called myself searching for this tool. ive accidentally installed Domino security instead of Exchange
  8. Hello Mail Security will not uninstall from Management Center and not listed in Add/Remove Programs. Can someone send me a manual procedure to uninstall Mail Security for IBM? Thanks
  9. Hello Needing a script to run in my management tool to see if Endpoint Security is installed or not. Thanks
  10. Yes I’m hoping we don’t have to reboot after every installation/upgrade. I understand why but as said updates are coming pretty frequent and requiring reboots, which is partially on MS yes. End users need to work and not worry about fixing their computer all the time (@ MS not necessarily ESET). (I feel like a beta tester for MS at this point) It appears to me protection is not active until rebooted, at least on the recent 7x versions (I haven’t tried 8x for this reason yet). And the SSL/TLS issue is still up in the air.
  11. Anyone ever seen Endpoint show the last update check a time in the future and console says "not updated recently"? Thanks
  12. It's something to do with the SSL/TLS I think, I disabled protocol filtering and it's been working fine for over 2 weeks.
  13. Had to uninstall yesterday to get my email to come through Outlook. As I said everything e-mail related in the policy is disabled. Someone said it shouldn’t matter but I also added exclusions for OST/PST files and the Outlook directory. It seems it takes a day or two for it to slow down but when it does it’s unusable.
  14. I will try this if problem continues. I’ve been using the latest version a few days and *I think* it’s good. Thanks.
  15. @Peter Randziak Just had to uninstall ESET AV because Outlook wouldn't open on a customers machine, they're using Comcast IMAP.
  16. Whats the best method to have ESET not prompt clients about outdated versions? For example I had one client asking me about the AV going out of support and it was only 1 or 2 minor versions behind. As quick as you release version updates this shouldn't happen. I know of Endpoints (not managed by me) that have version 4 and 5 in use and still receive definition updates etc. There should be a better method of receiving program updates. For example, if you run a program/version update, Windows prompts no AV installed etc until reboot. And as I said as quick as you're releasing program updates it's already outdated before it reboots. Just my thoughts.
  17. Hey @Peter Randziak Thanks Yes already tried that as I said before. Tech support and I disabled everything email related in the policy. They couldn't confirm the issue, but if I use it for more than a day or so it's really bad. I don't think it's my machines. Desktop is Intel i9 CPU with SSD, Laptop is Intel i7 with SSD (my phone doesn't have this issue). The server is sitting right next to me, it's running Xeon with SSDs under light load. But I can tell you if I uninstall ESET AV Outlook w/ IMAP is very responsive, where as it was taking 5-10 minutes (or more sometimes) to send a message or update a folder. Mailbox size is only about 2.5GB.
  18. @Peter Randziak I'm not sure what else to do, aside from loading a machine fresh which I haven't had time to troubleshoot much further yet. I did add exclusions for the Office Directory and PST/OST files (all email security functions were previously disabled in the policy). However I'm still convinced it's ESET somehow, I mean it only occurs when ESET is installed. I had to uninstall it to get my email, that's very inconvenient. I'm determined to find out exactly whats going on just haven't had much time to work on it. I thought it might be an Outlook Addon I was using but I uninstalled it for about a week and it made no difference. Side note: I'm using Linux Mail Security 4x on the IMAP server. I'll post back any findings. Thanks
  19. @LesRMed thanks Yes I keep thinking that. It worked fine for a couple years and all of a sudden my laptop started doing it. A month or so later the desktop. And I’ve had a couple customers with minor issues. i can uninstall AV and Outlook runs fine, reinstall and then it may be good for a few days and right back to slow. im getting real anxious now. Maybe I’ll reload a machine and go from there, but I do have a newer desktop it’s on rn. So idk. Probably something I’m overlooking or goofed up in my policy.
  20. Also, Outlook hangs sometimes and will not close (must use Task Manager). Not just mine, my client also, but they're using Exchange.
  21. Hi @Peter Randziak I don't think it has helped. I had to uninstall again. Just FYI I do have all the Email Options disabled in the Policy. Is there anything else I should look at it? Thanks
  22. @Peter Randziak Thanks, I will try this for a few days and report back. I contacted support a few days ago about this and basically couldn't duplicate the issue while we we're on the phone. But I can confirm on my Laptop/Desktop it's still an issue. But I will try this and report. Thanks
  23. Hello, Still pretty slow. If anyone has any suggestions please post here. Thanks
×
×
  • Create New...