Jump to content

Aryeh Goretsky

ESET Moderators
  • Content Count

    732
  • Joined

  • Last visited

  • Days Won

    48

Kudos

  1. Upvote
    Aryeh Goretsky gave kudos to Marcos in AV is blocking loading webpages   
    1, Correct, the module will be downloaded automatically with engine and other module updates.
    2, Under Update -> Show all modules you can check the version of installed module. The version of the fixed Cleaner module will most be 1213.
  2. Upvote
    Aryeh Goretsky gave kudos to Marcos in Full CPU with eset FileServer Linux   
    I would recommend collecting logs as per https://support.eset.com/en/kb6159-run-the-info-getcommand-on-a-linux-virtual-machine-and-send-the-logs-to-eset-technical-support and opening a ticket with your local ESET support.
  3. Upvote
    Aryeh Goretsky gave kudos to itman in eamsi.dll blocked from Videogame Counterstrike Global Offensive   
    Also the problem here appears to be not Eset's eamsi.dll, but CSO's new "Trusted mode" feature that is also causing issues with other running software: https://www.pcgamer.com/csgos-trusted-mode-anticheat-system-is-live-but-its-causing-problems/
    Believe this is something that needs to be reported to CSO's developers. Security software mechanisms that worked prior to Trusted mode implementation should also be allowed in this new mode.
    Also of note:
    https://blog.counter-strike.net/index.php/2020/06/30683/
    It also appears that Symantec does offer Authenticode signed certificates: https://urlssl.net/symantec-code-signing-certificate.html . Therefore the issue is not with Symantec certs. per se.
    -EDIT- Believe this is the issue with CSO. Eset's cert. for eamsi.dll is not an EV cert.. However, Eset also countersigned eamsi.dll with it's Microsoft issued driver cert. which is an EV cert.. This appears to satisfy most apps requirement for an Authenticode signed certificate, but not for CSO it appears. This is also why Code Integrity errors are being thrown by some apps.
  4. Upvote
    Aryeh Goretsky gave kudos to Marcos in Detection occurred but not cleaned   
    If you ran a custom scan, make sure that you didn't enable scan without cleaning:
     

  5. Upvote
    Aryeh Goretsky gave kudos to itman in Uploaded but still always a false positive   
    The only way to get rid of this detection is to get an UEFI/BIOS version from Lenovo that doesn't include the Computrace components and re-flash the UEFI/BIOS.
  6. Upvote
    Aryeh Goretsky gave kudos to Marcos in Uploaded but still always a false positive   
    The above files were detected on the C drive according to the screen shot. However, it's unlikely to be FP and it's most likely Lojack by Absolute Software that Lenovo used to install to laptops.
  7. Upvote
    Aryeh Goretsky gave kudos to Marcos in Uploaded but still always a false positive   
    EFI/Computrace detection is correct, it's not a false positive.
  8. Upvote
    Aryeh Goretsky gave kudos to Marcos in Trojan Perseus not detected by Nod32   
    It's normal to be detected as a PUsA. Trojan detection is rather a FP.
  9. Upvote
    Aryeh Goretsky gave kudos to Marcos in Domains false positive   
    Since this forum is not a channel for disputing detections and url blocks. we'll draw this topic to a close.
    Only the security malware lab is entitled to make decisions about url blocks. In this case, the blocks appear to be ok. Aggressive or misleading ads are subject to detection as well.
  10. Upvote
    Aryeh Goretsky gave kudos to Marcos in Allow access to some websites   
    The detection is correct. It's not that the website is on a blacklist but it's an adware javascript that was detected.
  11. Upvote
    Aryeh Goretsky gave kudos to Marcos in ESET   
    If it's a pre-installed application, it cannot be removed, only disabled.
  12. Upvote
    Aryeh Goretsky gave kudos to Marcos in exe installer command line   
    I don't think it's possible. Moreover, I can't think of a good reason to not use the latest installer.
  13. Upvote
    Aryeh Goretsky gave kudos to Marcos in ESFS Windows Server 2016   
    Please run the ESET uninstall tool in safe mode and after starting Windows in normal mode install EFSW 7.1 from scratch.
  14. Upvote
    Aryeh Goretsky gave kudos to FEAMCOR in After Windows 10 Build 2004 Install WSL2 is Blocked   
    Update of ESET fixed the problem. Please close this post. Thank you.
  15. Upvote
    Aryeh Goretsky gave kudos to Marcos in Steam update problem   
    Yes, it was a false positive created by the mechanism for automatic generation of detections.
  16. Upvote
    Aryeh Goretsky gave kudos to Marcos in Steam update problem   
    Most likely you are still on an older engine. The current one is 21448 which doesn't detect the file any more and 21449 is going to be released momentarily.
     
  17. Upvote
    Aryeh Goretsky gave kudos to Marcos in Steam update problem   
    It should be fixed in the upcoming module update.
  18. Upvote
    Aryeh Goretsky received kudos from jonnypotter321 in Future changes to ESET Internet Security and ESET Smart Security Premium   
    Hello,
    The goal of this message thread is to provide ESET with specific feedback on changes and new features you would like to see in future versions of ESET Internet Security or ESET Smart Security Premium. Please use the following format when providing feedback:
    Description: A very-specific one-line description of your feedback.
    Detail: A more detailed explanation of your feedback. Please feel free to make this any length, but be sure to use terms everyone can understand. If your suggestion is an extension or update to an existing discussion, please include a link to it in your message.
     
    Here is an example:
    Description:  Arduino support
    Detail:  The Arduino is a small ARM-based single-board computer popular with hobbyists.  I think ESET should make a version of ESET Internet Security for it.
    You are welcome to discuss the merits of each and every suggestion, but keep your comments on topic, concise and thoughtful.  There are other parts of the forum to discuss issues.
    NOTE:  When making your requests do not offer general suggestions such as "better detection, HIPS, firewall, cleaning, and so forth."  ESET's threat researchers constantly examine new threats and release updates to the virus signature database and to the modules in order to improve these functions.  Requests must be actionable:  If you have a specific feature or functionality you would like to see added (or improved) please post it here, but general requests to "make things better" or "improve detection" are not helpful because they do not give ESET detailed enough information.  Thank you for your understanding.
    Regards,
     
    Aryeh Goretsky
  19. Upvote
    Aryeh Goretsky gave kudos to oto313 in After enabling virtual Machine feature, the PC BSOD every start   
    After update to new version it works. Thanks
  20. Upvote
    Aryeh Goretsky gave kudos to Marcos in IObit Constantly Triggering ESET   
    The PUA detection is correct. It's optional. For more information what PUA are, please read https://support.eset.com/en/kb2629-what-is-a-potentially-unwanted-application-or-potentially-unwanted-content.
    If you think that benefits of using a particular PUA outweigh possible risks, you can exclude the PUA from detection.
  21. Upvote
    Aryeh Goretsky received kudos from Demostenes Iturrizaga in Disk Errors during Detection Engine updates after Windows Update   
    Hello,

    Just to add to my colleague @Marcos suggestion, I would strongly recommend you back up any important information stored on the drive, as it sounds like it has begun to fail.  SSD failure modes can be very problematic in terms of data recovery, so it is a very good idea to make sure any type of information you have on the drive which is valuable to y ou is saved in one (or more) backups.
    After you have gotten your important information backed up, check with the SSD manufacturer to see what diagnostic software they offer to check the drive, as that may provide you with additional information/insight into what is happening, as well as what options are available, such as replacing the drive under warranty, and so forth.

    Regards,

    Aryeh Goretsky
  22. Upvote
    Aryeh Goretsky gave kudos to Marcos in A verification of license ownership is now required   
    Contact the seller and ask for a refund.
  23. Upvote
    Aryeh Goretsky gave kudos to LWa in License Activation Issue   
    Thanks to Marcos - I got help really fast!
  24. Upvote
    Aryeh Goretsky gave kudos to Marcos in License Activation Issue   
    ESET NOD32 Antivirus for Linux desktop is a legacy product. Legacy products do not support activation but require a username and password for update.These are not usually included in the license email since current products require only a license key for activation but can be provided by customer care on request.
    I'm gonna send you a personal message with your U/P momentarily.
  25. Upvote
    Aryeh Goretsky gave kudos to SysEPr in Future changes to ESET Security Management Center / ESET Remote Administrator   
    Description: Color code failing tasks
    Detail:  The server used to color code the tasks that are failing. I'm running the latest ESMC, and now, that doesn't happen, and I have a hard time figuring out which tasks are failing. Is there a way to color code it again, or where can I see it? All I get is a generic email saying: "At least one client task has invalid configuration and therefore will fail."
×
×
  • Create New...