Jump to content

itman

Most Valued Members
  • Content Count

    3,604
  • Joined

  • Last visited

  • Days Won

    122

Everything posted by itman

  1. I will also add that corp. level network apps that have application control still don't have the capability the OP wants: https://campus.barracuda.com/product/nextgenfirewallx/doc/41093369/how-to-introduce-application-control-to-your-network/ As shown above, the capability really isn't more encompassing that what Eset already offers. Bottom line - the capability doesn't exist at the firewall level and never will.
  2. Thanks. Good find. Have you considered using idle-time scanning as a solution to your daily scanning issues?
  3. There are third party apps that have this capability. The installed version of Adguard: https://adguard.com/en/welcome.html for example will not only monitor the browser for like activity, but any other app you wish.
  4. Until Eset figures out why this happens, one might try what this poster did in another thread: https://forum.eset.com/topic/19007-main-you-are-protected-screen-keeps-popping-up-every-few-minutes/?do=findComment&comment=92783 . It makes no sense to me and I assume others, why opening Win Task Manager would stop the popping up of the Eset GUI home page. But if it stops the behavior, at least for the duration of the current logon session, it would be worthwhile.
  5. Not possible. Assumed is if one wants to block a domain/URL, they want to block all attempted accesses to it.
  6. The URL block list has wildcard capability. For example, coding, *.domain.com/*, will block all URLs associated with domain.com. As far as URL blocking via firewall rule, doubtful that will ever be implemented since most firewalls don't have such capability.
  7. This is not an isolated instance. Another user posted same issue here: https://forum.eset.com/topic/18952-you-are-protected/ Did you install Eset from scratch, or was this an in-program upgrade to ver. 12.1.31? What Eset ver. was installed prior to 12.1.31?
  8. What I was referring to was that the files shown will change dynamically when the shown screen is displayed; at least for a while. In other words, it is not just showing the last scanned file. Also I never remember this being shown in previous versions; perhaps it never worked for my install in those versions.
  9. As the below screen shot shows, it appears Eset is continuous scanning select? file locations. Clicking on the file shown yields a small popup stating "Permanent protection of files used by applications or the operating system." Note that no desktop apps were active at screen shot time. Also Eset Idle Scan time option is disabled.
  10. Sounds about right. Mine yesterday took 1 hour 20 mins. to scan 690K files. My last SmartScan took 12 mins. to scan 211K files. Note: Scan times are also dependent upon ThreatSense settings. For example, the SmartScan profile doesn't scan archives by default. If that was enabled for the profile, more files would be scanned increasing scan times.
  11. Refer to the FAQ section of the Eset forum home web page. It's located on the right hand side of the page below the Topics section titled "How do I create a Process Monitor file."
  12. Eset scan elapsed time durations are dependent upon: 1. Scan profile used; SmartScan or In-Depth 2. Number of drives/files being scanned on the device. The In-Depth scan profile as its name implies will scan all files on all drives selected for scanning. The SmartScan profile which is the default is designed to scan directories and files commonly used by malware. Additionally, the SmartSmart has a mechanism whereby once a file has been scanned, it will not be rescanned unless there has been a physical change to the file. As such, SmartScan time duration should be considerably reduced with time. For individuals whom wish to perform daily scanning, Eset's Idle-time scan option might be a better option. This option will continuously scan files when the device is idle. The question I recently asked in the forum which is unanswered to date is if idle time scanning occurs when one signs off their user account? Idle time scanning would be a moot option if one signs off every time they physically leave their device and scanning did not occur during this interval.
  13. Also in regards to this: Note that gateway NAT and firewall rules are separate entities and are processed in a different order depending on whether the Internet traffic is inbound or outbound. Here's a reference to that using pfsense as an example: https://docs.netgate.com/pfsense/en/latest/book/nat/ordering-of-nat-and-firewall-processing.html
  14. Overall, I see nothing wrong with this: I assume there is necessary external access authorization in ERA? Again, external port 2222 traffic must be strictly routed; to the ERA server in this instance.
  15. https://www.auditmypc.com/tcp-port-2222.asp Example of a SSH attack exploiting an open port 2222: https://www.hackingarticles.in/ssh-penetration-testing-port-22/ . Bottom line - any open port on the WAN side of the network gateway is a risk.
  16. @AGH1965, you might want to look at this article: https://www.groovypost.com/howto/schedule-wake-sleep-windows-automatically/ . It was written for Win 7 but appears it would also work for Win10. This article assumes the user wants to control sleep and wakeup times on his device to perform select activities. The technique could be also adapted to keeping his device always in a powered up state. For example, an "always powered on" script could be Win task manager scheduled to run let's say, 5 mins. prior to the Eset scheduled scan time. The Eset scheduled scan would be configured to shutdown the device at the end of the scan. Finally, another task manager scheduled script would be needed that runs at boot time that resets power policy back to default policy. Problem solved as I see it.
  17. Well, it appears I was wrong about sleep mode not activating during an Eset scan. It did so in the middle of a scheduled scan today. Upon resume from sleep mode, scan resumed automatically where it left off. If resuming a scan where it left off is an issue, it appears the only solution is to extend your Win sleep time to be longer than the scan time.
  18. By any chance, you are signed on to a standard user account? Note the following: See the following forum thread for reference: https://forum.eset.com/topic/16028-attempting-to-add-the-root-certificate-to-all-known-browsers-on-your-computer-failed/
  19. The scan started an hour ahead of schedule. So my assumption was correct. The bug manifests when anything other than missed scan is set to ASAP is selected.
  20. Appears this was added in the ver. 12.1.31. I saw it today for the first time today after I changed my scan profile from "SmartScan" to "In-depth." The message is simply Eset informing you In-depth scanning takes a while; which in reality is usually the case.
  21. Per Eset online help: https://help.eset.com/essp/12/en-US/solving_problems_protocol_filtering.html If you have FireFox configured for some reason to automatically start at boot time, disable that capability. It appears Eset keeps trying to update FireFox's root CA certificate store and can't do so. Do you have FireFox constantly running? If so, shut it down so Eset can update it.
  22. I suspect something is amiss with your device BIOS power management settings. In the Power Management section of the BIOS, look for a setting titled PME Event Wake Up or the like. This allows for the PCI or PCIe bus to monitor and control sleep activity at the hardware level. Make sure the setting is enabled. Note: the feature only works on my device for example, if ATX power supply provides at least 1amp on the +5VSB lead. Most modern power supplies conform to this requirement.
  23. It appears you are manually starting up B&PP via desktop icon or within the Eset GUI itself. Enter the URL for your bank within an open FireFox browser session. Eset should auto open a separate B&PP browse session and directly connect to your bank web site.
  24. It appears at this point, the only scan that is running at its true scheduled time is one coded with the missed scan option of ASAP. Also, it has yet to verified if the ASAP missed scan option is working properly. It was not in vers. 12.0. I have a scheduled weekly scan due to run tomorrow at noon. It has the 1 hour missed scan option. I will post tomorrow if the scan ran at it schedule noon run time.
  25. Post a screen shot of the actual Eset alert please. The first thing that needs to be determined is what application is trying to import a root CA certificate. From the message posted, it appears something is trying to update Eset's root CA certificate in the Windows root CA certificate store.
×
×
  • Create New...