Jump to content

itman

Most Valued Members
  • Content Count

    8,154
  • Joined

  • Last visited

  • Days Won

    197

Kudos

  1. Upvote
    itman received kudos from Dream in [ESET Internet Security] License Key Overuse   
    My question as to these bogus my.eset,com entries is why do they exist in the first place?
    In this instance, there are two licenses and both are allocated. Should not my.eset.com block any additional set ups? Or what is going on is someone logs on my.eset.com; deactivates a legit license setup; then allocates that license to his device?
  2. Upvote
    itman received kudos from Dream in [ESET Internet Security] License Key Overuse   
    What I would recommended is Eset implement 2FA for my.eset.com ASAP. Something that said was to done and has yet to be done.
  3. Upvote
    itman received kudos from Peter Randziak in High use of Memory by ESET Internet Security   
    Yes.
    Once you returned to the regular update channel, Eset download modules used on that channel. As far as Internet Module is concerned, that is ver. 1423. The only way you will receive ver. 1425 that contains the memory usage fix is to remain on the pre-release update channel. Once Eset releases ver. 1425 on the regular update channel, you can then switch back to that channel. Again, it may be some time till ver. 1425 is released on the regular update channel.
  4. Upvote
    itman received kudos from Nightowl in Virus signature database not updating with latest version   
    I would also advise creating the SysRescue bootable media on a device not connected to the local network. For example, a relative's or friend's computer that has no malware on it.
  5. Upvote
    itman gave kudos to Nightowl in Virus signature database not updating with latest version   
    It's better to isolate the computers that have the Worm so it can stop spreading , after that you need an up-to-date antivirus that will run a deep scan for these computers so it can take the worm out
    Maybe in your case where you cannot update for some reason and cannot select directly from ESET Update servers , try to see what you can do with ESET Online Scanner : https://www.eset.com/us/home/online-scanner/?intcmp=intrw
  6. Upvote
    itman received kudos from InfinityLoop in Your system is exposed to risk   
    Is this a trial license or a paid license? Your screen shots show a trial license being activated.
  7. Upvote
    itman received kudos from peteyt in Logins for 1.3 million Windows RDP servers collected from hacker market   
    https://www.bleepingcomputer.com/news/security/logins-for-13-million-windows-rdp-servers-collected-from-hacker-market/
  8. Upvote
    itman received kudos from Page42 in Unwanted marketing message   
    The question is if the OP and the recent other poster did this?
    The OP purchased from Newegg as I have done in the past. You are e-mailed a license key and normally one would just do an Eset in-product license update. No need to export Eset settings, uninstall, re-install, and then import previous Eset settings.
  9. Upvote
    itman received kudos from Page42 in Unwanted marketing message   
    Try to extract the URL associated with the "Learn More" tab in the alert w/o mouse clicking on it and post it in the forum.
  10. Upvote
    itman received kudos from Mr_Frog in High use of Memory by ESET Internet Security   
    A few comments about MBAM and its Katana engine use.
    Katana is far from new. It was developed as an open source project: https://sourceforge.net/projects/katana-usb/files/v3.0beta/ . Much later, Russian based AV Dr. Web developed it further: https://products.drweb-av.pl/home/katana/ . Note that Dr. Web is the only AV approved by Russia's FSB for use in Russia. Draw your own conclusions .......
    The question is if MBAM is using the Dr. Web version of Katana under a license agreement? If this is the case, I certainly wouldn't be using MBAM.
  11. Upvote
    itman received kudos from migs_k in is this legit? NgcFirst\ConsecutiveSwitchCount   
    This thread ended with the issue being related to Eset LiveGrid connectivity. Check your Eset Event log for any entries realted to this status.
  12. Upvote
    itman received kudos from Chanklish in certificate revoked invalid oscp   
    I can open this web site fine in FireFox.
    It won't open at all in IE11. All I get is a blank web page. Ditto for Edge. However, Edge didn't show any Intermediate cert. in the cert. chain path. So something is wrong with the cert. validation path for this web site.
  13. Upvote
    itman received kudos from Chanklish in certificate revoked invalid oscp   
    Per Quals SSL Server check, a chain path has an extra cert. in it. This status has caused past issues with Eset SSL/TLS protocol scanning:

  14. Upvote
    itman received kudos from howardagoldberg in Question about detection engine   
    Reviewing my Eset Event log entries from yesterday, I had an update at 8:18 AM. The next one didn't occur till 3:39 PM. That's way ......... too long of an update interval.
    Eset needs to straighten out its forwarding servers here in North America.
  15. Upvote
    itman received kudos from howardagoldberg in Question about detection engine   
    Here in the U.S., I am also sitting at ver. 23048. I haven't had an update since 9:27 AM EST.
    Might be an issue w/Eset relay servers in North America.
  16. Upvote
    itman received kudos from shocked in deleted ESET manually without seeing Epfw NDIS LightWeight   
    Earlier versions of Eset used a NDIS network mini-port filter driver to filter SSL/TLS network traffic. This has been replaced in later Eset versions which now use the Windows Filtering Platform (WFP) built into the Win OS.
  17. Upvote
    itman received kudos from Mr_Frog in Two factor authentication for my.eset access   
    You misunderstood me. This was my suggestion on how Eset handle my.eset.com access.
    When someone logs onto an account there, Eset sends an e-mail to whomever logged on. Remember the "user id" for logging into a my.eset.com account is an e-mail address. This is much easier to implement versus a two-factor scenario where a "code" is e-mailed and that code is subsequently entered to complete the logon process.
  18. Upvote
    itman received kudos from schuetzdentalCB in CVE-2021-26855 Detection in Filesecurity   
    Refer to this Microsoft article:
    https://msrc-blog.microsoft.com/2021/03/05/microsoft-exchange-server-vulnerabilities-mitigations-march-2021/
  19. Upvote
    itman received kudos from Peter Randziak in This new Microsoft tool checks Exchange Servers for ProxyLogon hacks   
    https://www.bleepingcomputer.com/news/microsoft/this-new-microsoft-tool-checks-exchange-servers-for-proxylogon-hacks/
  20. Upvote
    itman received kudos from Peter Randziak in This new Microsoft tool checks Exchange Servers for ProxyLogon hacks   
    Eset just published an very detailed article on this vulnerability here: https://www.welivesecurity.com/2021/03/10/exchange-servers-under-siege-10-apt-groups/ . 
    Looks like Eset is detecting most of the known attack methods. The real issue is about the unknown ones. These servers need to be patched immediately or, Microsoft mitigations employed which again will only protect against known attack methods.
  21. Upvote
    itman received kudos from Peter Randziak in Microsoft releases Hafnium patch for defunct edition of Exchange   
    https://www.scmagazine.com/home/patch-management/microsoft-releases-hafnium-patch-for-defunct-edition-of-exchange/
  22. Upvote
    itman received kudos from fabioquadros_ in Avast Now Also Has Block-At-First-Site-Capability   
    The fact is Eset has all the internal mechanisms in place to accomplish this. All they have to do is block the process until LiveGrid black list determination processing has completed. As to the false positive element, I say "to hell with that." Most home users would not be significantly impacted by such process blocking. 
    This could be also further refined by adding Trusted Publisher, signing, etc. criteria to Eset Reputation scanner. Failure on reputation coupled with suspected malicious activity should be enough to block until LiveGrid initial scanning is completed.
  23. Upvote
    itman received kudos from fabioquadros_ in Avast Now Also Has Block-At-First-Site-Capability   
    Avast blog article here: https://blog.avast.com/cybercapture-protection-against-zero-second-attacks .
    Detail on configuration options here: https://support.avast.com/en-us/article/54/
    Of note is this feature exists even in Avast free version.
    Time Eset "get with the program" and offer same like capability for their home use products.
  24. Upvote
    itman received kudos from bEeReE in Pre-installation questions?   
    BitDefender's TrafficLight has been a joke ever since they introduced the feature. "Each to their own" as the saying goes.
  25. Upvote
    itman received kudos from migs_k in can I ask where to locate these windows "updates"   
    As far as KB4023057 goes, I also received it again on 2/19. Appears this is an update to Windows Updating itself and Microsoft is just using the prior KB number.
×
×
  • Create New...