cvvorous
Members-
Posts
54 -
Joined
-
Last visited
About cvvorous
-
Rank
Newbie
Profile Information
-
Location
USA
Recent Profile Visitors
846 profile views
-
cvvorous reacted to a post in a topic: Icon spinning forever
-
Icon spinning forever
cvvorous replied to cvvorous's topic in ESET Internet Security & ESET Smart Security Premium
I wasn't able to grab a dump from ekrn.exe as it's protected from tampering. Tried doing it after disabling self-defense stuff in the HIPS settings but it didn't work. -
Icon spinning forever
cvvorous replied to cvvorous's topic in ESET Internet Security & ESET Smart Security Premium
OK, next time it does it, I'll also grab a dump of ekrn.exe. This link has an archive with two dumps of eguiproxy from two sessions with the icon spinning, if that's helpful on its own: https://drive.proton.me/urls/9R2X65Q1EG#sYgQHNEBmGd2 And yeah, I tried hovering the cursor over the icon and it doesn't show any active operations, just says the product name and version. It will spin until I reboot the system. -
Hi, I saw several other threads about this issue occurring with v 16, but figured I'd make my own. Same issue as the others, on every cold boot, after the product starts and performs its start-up scan and stuff, the icon spins forever. I reinstalled 17.1.9.0, tried enabling pre-release updates, etc. Spinning usually stops at reboot (but not always). I took the liberty of generating two dumps of the proxy gui from different windows sessions and zipped them up if you're still interested in those. If anybody happened to figure out what causes this and can give me an idea what setting to change, please let me know! Thx
-
Is ESET able to detect HTML5 malware?
cvvorous replied to Azure Phoenix's topic in General Discussion
the blog both articles refer to is really light on details beyond inferring that bad actors are using html5 redirects on mobile devices with specific criteria; my guess is that eset would protect the user from the domain a browser is redirected to. imo, the html5 "malware" referenced doesn't seem like "malware" so much as using html5 features to do sketchy stuff. -
Steam not looking right
cvvorous replied to Ladderman's topic in ESET Internet Security & ESET Smart Security Premium
Are there any other sites/services that don't load correctly? Does the network in question have WPA or similar encryption, or is it an unencrypted public network with a captive portal? -
Steam not looking right
cvvorous replied to Ladderman's topic in ESET Internet Security & ESET Smart Security Premium
I think Marcos was asking about whether the issue goes away if you completely uninstall ESET and reboot your machine. -
my client fires the same 6 requests over and over, with different values based on date/time. afaict, this telemetry hasn't changed since 2013 or so (if you search for chsquery you'll find weirdos posting stuff about ESET participating in NSA/CIA SIGINT ops, lol) POST https://ts.eset.com:443/query/chsquery.php HTTP/1.1 Host: ts.eset.com:443 Content-Type: multipart/form-data; boundary=------------------------3kMBisMe5ab5274 Content-Length: 3021 Connection: Keep-Alive --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="chc_pversion" Content-Transfer-Encoding: 8bit 6 --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="chc_sversion" Content-Transfer-Encoding: 8bit 88 --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="chc_gmdatetime" Content-Transfer-Encoding: 8bit 2018-03-23 16:11:56 --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="chc_datetime" Content-Transfer-Encoding: 8bit 2018-03-23 10:11:56 --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="datatype" Content-Transfer-Encoding: 8bit �f --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="key" Content-Transfer-Encoding: 8bit <redact> --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="priority" Content-Transfer-Encoding: 8bit � --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="hitcount" Content-Transfer-Encoding: 8bit � --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="firsthitdate" Content-Transfer-Encoding: 8bit �gT�[U�L^^ ZV[BS�G_ --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="lasthitdate" Content-Transfer-Encoding: 8bit �gT�[U�L^^ ZV[BS�G_ --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="firsthitdatedelta" Content-Transfer-Encoding: 8bit �fQ�O --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="attributes" Content-Transfer-Encoding: 8bit <redacted encoded data> --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="sessionid" Content-Transfer-Encoding: 8bit �gS�C]�U^ --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="file"; filename="file" Content-Type: application/octet-stream <redact encoded data> --------------------------3kMBisMe5ab5274 Content-Disposition: form-data; name="chc_valid" Content-Transfer-Encoding: 8bit 1 --------------------------3kMBisMe5ab5274--
-
planetside 2, elite dangerous, x-plane, stellaris on pc for me. adding sea of thieves on tuesday.
-
Opera banking protection
cvvorous replied to Andrej's topic in ESET Internet Security & ESET Smart Security Premium
AFAIK, Webroot can apply their identitysafe protections to Opera, but they don't use sandboxing.