Jump to content

Aryeh Goretsky

ESET Moderators
  • Content Count

    748
  • Joined

  • Last visited

  • Days Won

    48

Kudos

  1. Upvote
    Aryeh Goretsky gave kudos to Marcos in blitzhandel24.pt - Caution!!!   
    Please contact ESET Portugal: https://www.eset.com/pt/. They should be able to tell if it's an authorized reseller or not.
    As for the licenses that don't work, please provide the public license IDs.
  2. Upvote
    Aryeh Goretsky gave kudos to WhiteHat_PT in blitzhandel24.pt - Caution!!!   
    Hi Jorge Melo. Thanks for your feedback and contacting us at ESET Portugal, Unfortunately we have in fact identified similar situations from other purchases of ESET licenses sold by Blitzhandel24 e-commerce sites.
    The situation is under investigation and we advise our customers and potential customers to buy only from ESET official websites or official e-stores - in Portugal that will be https://www.eset.com/pt, as Marcos wrote.
    It's likely that one can find other e-commerce websites in Portugal selling ESET solutions (home products) but please be aware if the seller is registered in Portugal and not only using a .PT domain (while having commercial registration in any other country).
    * Customer advisory *
    Please consider that buying a cheaper ESET license from anywhere else from official websites or partners can result on:
    Product activation failure; Lack of official customer support; Unnecessary additional cyber-security risk; Be safe and protected!
  3. Upvote
    Aryeh Goretsky gave kudos to Marcos in Firewall Rules to allow Windows Update   
    Firewalls in general work with IP addresses, not with hostnames. Since IP addresses may change in time, I would not recommend creating firewall rules to restrict communication of the OS with Microsoft's servers.
  4. Upvote
    Aryeh Goretsky gave kudos to Marcos in Microsoft Teams issues   
    The firewall logic has not changed over years. We assume that Teams has been updated and now works in the way that a connection is initialized by the server. In automatic mode, all outbound communication is allowed and all non-initiated inbound communication blocked, hence a rule for Teams may need to be created. It is beyond us to have a list of all 3rd party applications where the communication is initiated from outside and maintain the rules for them.
     
  5. Upvote
    Aryeh Goretsky gave kudos to SteveSi in Sysrescue Boot to USB Problem   
    Did your Yoga come with Windows 10 32-bit or Windows 10 64-bit?
    To UEFI-boot, the USB drive needs to have a FAT32 partition with a \EFI\BOOT folder on it containing one or more .EFI boot files.
    For systems with a UEFI 64-bit BIOS - you need \EFI\BOOT\BOOTX64.efi
    For systems with a 32-bit UEFI BIOS - you need \EFI\BOOT\BOOTIA32.EFI
    If your system came with 64-bit Windows installed then it needs to boot from the BOOTX64.EFI file.
    If your system came with 32-bit Windows, it probably has a 32-bit UEFI BIOS and so needs to boot from BOOTIA32.EFI.
    Many ISOs are 64-bit UEFI only...
  6. Upvote
    Aryeh Goretsky gave kudos to Marcos in Activation failed - Leaked license   
    The license indeed leaked. We do not sell on ebay. The license was issued in the US to Otto B. and has been used for activation almost 3,500 times.
    Please ask for a refund and purchase a license via www.eset.com or through any of our authorized sellers.
  7. Upvote
    Aryeh Goretsky gave kudos to itman in Blocking IP address 34.102.136.180. Something to do with WPAD   
    This is related to WPAD DNS activity:
    https://findproxyforurl.com/wpad-introduction/
    Appears WPAD has a number of security risks with the recommendation it be permanently disabled if not using IE11 or Edge as your browser: https://auth0.com/blog/heads-up-https-is-not-enough-when-using-wpad/
  8. Upvote
    Aryeh Goretsky gave kudos to TomPark in Blocking IP address 34.102.136.180. Something to do with WPAD   
    Hi All,
    Thank you for the information, like has already been said I think the notification from ESET is a side affect of something else that is changing the domain suffix when connect to the VPN.
    Something that might be of consideration is disabling the 'Auto-Detect' proxy configuration in Chrome / IE which will then stop the browser from looking for these configurations as 'wpad.domain.com' is the default search browser use if this setting is enabled and the information is not provided via DHCP. This should fix the issue for anyone that is still seeing this on their machine. Please note to disable the setting a browser restart will be required.
    As @Marcos said the IP will be unblocked, if anyone is able to test the solution above that would be appreciated. 
    Regards,
  9. Upvote
    Aryeh Goretsky gave kudos to TomPark in Blocking IP address 34.102.136.180. Something to do with WPAD   
    Hi Guys, 
    A quick question are all of these machines that are affected domain joined machines?
    Also is anyone using wpad to configure a proxy on the machines connecting to the VPN?
    Regards,
  10. Upvote
    Aryeh Goretsky gave kudos to itman in Best Business VPN for Remote Connection   
    https://www.comparitech.com/blog/vpn-privacy/remote-access-vpn/
  11. Upvote
    Aryeh Goretsky gave kudos to Marcos in Problem updating audio drivers and HIPS   
    Please carry on as follows:
    - enable logging of blocked operations in the advanced HIPS setup
    - reproduce the issue
    - disable logging
    - collect logs with ESET Log Collector and upload the generated archive here.
  12. Upvote
    Aryeh Goretsky gave kudos to abshakya in Sites block   
    I will contact the conjars.org. Thank you for support.
  13. Upvote
    Aryeh Goretsky gave kudos to jaftwo in Win10 Defender   
    Thanks. I spend too much time juggling backups, changing passwords, updating drivers, and security -- didn't want more things.
  14. Upvote
    Aryeh Goretsky gave kudos to Marcos in Win10 Defender   
    There will be no effect on 3rd party AVs. As long as another AV is registered in the system, Defender will stay disabled.
  15. Upvote
    Aryeh Goretsky gave kudos to Marcos in Stagefreight Not Detected   
    Applications on Android are quite limited in terms of functionality. Antivirus can detect malicious applications and files but it cannot access SMS/MMS or check network communication for instance. These are limitations of the operating system.
    As Wiki says: Stagefright is the name given to a group of software bugs that affect versions 2.2 "Froyo" of the Android operating system. It's hard to believe that you would have such an old version of Android. It's not even supported by ESET so you would not install EMS on it either.
  16. Upvote
    Aryeh Goretsky gave kudos to Marcos in Too many notifications   
    Please check the Detections logs which should provide more information about the email which was detected. There should be the time of receipt, subject and both the recipient and sender logged. If you receive email through IMAP(S) and the detection was called HTML/Fraud.something, it's most likely a known issue which will be addressed via an automatic module update soon. If you have a chance to log in via a web interface to the mail server and remove the troublesome email, please do so.
  17. Upvote
    Aryeh Goretsky gave kudos to peteyt in ESET Internet Security uses almost 1GB of RAM. What's going on?   
    Also does version 13 have the same issues?
  18. Upvote
    Aryeh Goretsky gave kudos to Marcos in eset not scanning certain areas   
    Even if you run a scan as an administrator, there will be dozens of files that cannot be scanned.
  19. Upvote
    Aryeh Goretsky gave kudos to Marcos in eset not scanning certain areas   
    As the notice says, the files could not be scanned due to being exclusively used by the operating system or another application, or you don't have sufficient read permissions. Running a scan as an administrator should scan more files than if run as the current user without elevated permissions.
  20. Upvote
    Aryeh Goretsky gave kudos to mandrakes in How can I retrieve my license?   
    Good news! I was able to look up my invoice on Newegg and it included the activation key.
    I'm good to go now.
  21. Upvote
    Aryeh Goretsky gave kudos to Marcos in Eset not detecting drive by download   
    IDM supports scanning of downloaded files with a command-line on-demand scanner. It's possible to use ecls for this purpose:

  22. Upvote
    Aryeh Goretsky gave kudos to JitzyJT in Eset not detecting drive by download   
    Thanks again @Marcos

    That did it. I changed the scan action of IDM from "auto" to "scan" and ESET blocked it straight way. Tried with Chrome, Firefox, Edge Chromium (with microsoft store idm extension) and Brave browser. 

    ESET blocked the download on all four browsers.

    As for limiting the connections which I didn't have to do anyway so  I'm leaving it as it is.

    I'll keep looking if it'll happen again after changing the setting.

    Thank you for now!!!
  23. Upvote
    Aryeh Goretsky gave kudos to itman in Gamer Mode: Why there's no shortcut/hotkey way to activate it?   
    Have you tried this?
    https://help.eset.com/eis/13/en-US/idh_page_settings_antivirus.html?idh_config_gamer.html
  24. Upvote
    Aryeh Goretsky gave kudos to itman in Notifies of optional windows updates as recommended   
    I believe this is a Microsoft "techno-babble" issue.
    These Win 10 non-security updates are classified in the Microsoft Update Catalog as Recommended updates versus Optional updates. However, Microsoft in its KB articles will note that they show under the Win 10 Update Settings section of Optional Updates.
    A true Optional update is Silverlight, etc..
  25. Upvote
    Aryeh Goretsky gave kudos to Arquitas in Endpoint Security is blocking Utorrent web installation   
    Thank you, Marcos. This was very helpful, I was able to find an alternative torrent client. Cheers.
×
×
  • Create New...