Jump to content

Search the Community

Showing results for tags 'command line'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • ESET General Forums
    • ESET Announcements
    • General Discussion
    • Forum FAQ's and Rules
    • Submit a virus, website or potential false positive sample to the ESET lab
    • Quick questions by guests (registration not required)
    • WeLiveSecurity.com
  • ESET Home User Products
    • ESET Internet Security & ESET Smart Security Premium
    • ESET NOD32 Antivirus
    • ESET Cyber Security (for Mac)
    • ESET Cyber Security Pro (for Mac)
    • ESET NOD32 Antivirus for Linux Desktop
    • ESET Products for Mobile Devices
    • Web portals
  • Malware Detection and Cleaning
    • Malware Finding and Cleaning
    • ESET Standalone Malware Removal Tools
  • ESET Business User Products
    • Customer Research Opportunity
    • Gartner Peer Insights review invitation
    • ESET Cloud solutions
    • ESET Endpoint Products
    • ESET Products for Windows Servers
    • ESET Products for Linux Servers
    • ESET Products for Mobile Devices
    • Remote Management
    • ESET INSPECT (Detection and Response)
    • ESET Products for Virtualized Environments
    • Encryption
    • ESET Licensing for Business
    • Other ESET business products
  • ESET Beta Products
    • ESET Beta Products for Home Users
    • ESET Beta Products for Business Users
  • Slovak and Czech forums
    • ESET NOD32 Antivirus, ESET Internet Security a ESET Smart Security Premium
    • Produkty pre mobilné zariadenia
    • Vírusy a iné hrozby
    • Ostatné


  • Files
    • Early Access
    • Miscellaneous
    • Outlook plugin BETA
  • ESET Cyber Security 7 BETA
  • ESET Bridge BETA

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL






User type

  1. Hi, so I've been having this problem for a week or so and I can't find a way to fix it. My ESET Personal Firewall + Windows Firewall are turned off for some random reason. It says that I should immediately restart my PC. I restarted it and I got the same message again. I tried re-installing it and nothing happened. When I tried to turn on Windows Firewall it didn't let me because of ESET. I'm using ESET Internet Security 10.0.369.0. Here are some screen shots: I'm usingg Windows 10 Pro. If anyone could help me please reply to this post.
  2. Hi folks, I'm trying to analyse the log files of the ESET NOD32 for Linux Desktop with a small script, but they are hardly human readable. Is there a way to convert these log files to "normal", human-readable log files? Filename of files I'm talking about: /var/log/esets/eventlog.dat /var/log/esets/threatlog.dat Best regards xiconfjs
  3. Hi, I'm using virus scan using the command line feature. Is it possible to use it for a single file instead of the all folder? i can't see this option here - hxxp://support.eset.com/kb3417/?&page=content&id=SOLN3417 Thanks, Kfir
  4. Greetings, I'm hoping to use EOS within a .bat file and I'm trying to see if there are any command line flags I can use. I've found the parameters for ECLS (hxxp://support.eset.com/kb3417/?locale=en_US) but wasn't sure if those would work. Also, I see there are two applications in the EOS directory (OnlineCmdLineScanner.exe and OnlineCmdLineScannerA.exe). Can these be used to run EOS without the app window popping up?
  5. Had to install 64-bit agent in Ubuntu for testing. Obviously, it's not reporting to our ERA server - where/how do we configure the agent to report to our ERA server?
  6. Dear , good morning . I need to know if there is any guide to change the static IP address from the command line of the virtual admin that was downloaded from the web and runs under debian. currently the system is configured by default as the virtual is already downloaded , which is dhcp , want to change these parameters to static ip able to directly assign the IP address, but can not find a guide on how to parameterize this regard .
  7. I am looking for antivirus, who can check file and return or logging answer from command line. I want check uploaded files for my server for viruses from code. Can ESET NOD32 for Linux do that? If can, please give me some example. Thanks
  8. Hi all, We are actually deploying the ERA 6 server on our Linux Debian 7.8 server to manage our licenses but we do have some troubles. The ERA server and Web console have been installed succesfully. By that we mean that installation has ended without any problem and that we can use the web console (and generate the needed certificates). But next step is to setup an agent on the server itself (as it seems to be needed), and that's were we actually do have problems. From web console we donwloaded the "Agent Certificate" and the "Certificate Authority Public Key" that were generated at server installation (those that are allready listed). Then we just run following Agent-Setup command specifying the agent certificate and CA public Key: ./Agent-Linux-x86_64.sh \ --skip-license \ --cert-path="/PATH/Certificate Export CN=Agent at _ C=US.pfx" \ --cert-auth-path="/PATH/Certification Authority CN=Server Certification Authority C=US public key.der" \ --cert-password= \ --hostname=SERVERIP \ --port=2222 Note, the pre-generated Agent Cert has no password, therefore we leave the password field blank. But the installation fails with following error: Database status is 'DB_INVALID'. Database cannot be upgraded, because it is corrupted or it is not ERA database. Searching through log file, those are the last lines: 2015-03-04 10:37:23 Information: Installer: Reading database status... 2015-03-04 10:37:23 Information: DbCheckStatus: Action invoked with: --cert-auth-content "" --cert-auth-path /PATH/Certification Authority CN=Server Certification Authority C=US public key.der --cert-auth-temp-path "" --cert-content "" --cert-password ********** --cert-path /PATH/Certificate Export CN=Agent at _ C=US.pfx --cert-temp-path "" --cert-to-check-password ********** --cert-to-check-path /PATH/Certificate Export CN=Agent at _ C=US.pfx --computer-added-uuid "" --computer-group-choice DEFAULT --connection-chosen host --current-version 6.1.450.0 --db-connectors-dir /opt/eset/RemoteAdministrator/Agent/setup --db-path /var/opt/eset/RemoteAdministrator/Agent/data.db --db-scripts-dir /opt/eset/RemoteAdministrator/Agent/setup/Database --db-type SQLite --db-upgrade "" --era-lib-dir /opt/eset/RemoteAdministrator/Agent/ --hostname SERVERIP --installed-version 6.1.450.0 --log-sequence-id "" --modules-dir /var/opt/eset/RemoteAdministrator/Agent/Modules/ --port 2222 --product-guid GUID --product-name Agent --replication-interval "" --server-cert-temp-path "" --webconsole-hostname "" --webconsole-password ********** --webconsole-port 2223 --webconsole-user Administrator 2015-03-04 10:37:23 Information: Entering function: std::string Era::Setup::Common::CustomActions::CDatabaseReader::GetDatabaseStatusForEmbeddedDB(const string&, const string&, const string&) 2015-03-04 10:37:23 Information: Entering function: std::string Era::Setup::Common::CustomActions::CDatabaseReader::GetDatabaseStatus(const string&, const string&, const string&, std::stringstream&, std::vector<std::basic_string<char> >&) 2015-03-04 10:37:23 Information: DbCheckStatus: Set output property: P_DB_STATUS = DB_INVALID 2015-03-04 10:37:23 Information: DbCheckStatus: Return code: 0 2015-03-04 10:37:23 Information: Installer: Parsed output property: arg_db_status=DB_INVALID 2015-03-04 10:37:23 Information: Installer: Database read successfully. 2015-03-04 10:37:23 Information: Installer: Database status is 'DB_INVALID' 2015-03-04 10:37:23 Information: Installer: Database status is 'DB_INVALID'. Database cannot be upgraded, because it is corrupted or it is not ERA database. As we can see there seems to be a problem with the database... But which one ? Regarding following line in the logs, we assume that the Agent has its own database (an sqlite one): --db-type SQLite But we have no idea on what to do to debug this situation... If someone has any idea or steps to find out what is wrong here, we would be very pleased. Best regards, G.
  9. Hi People! Now i need to know how to list applications installed windows 10/8/7 remotely?, i have a clients with remote agent, but i need to make a report with this information. Is possible to use client task for to do it? Thanks in advance! Pablo
  10. Hello, I implemented the era_6_server on vm via the .ovf-file from eset. Now I tried to install the Proxy on the same machine via the script Proxy-Linux....sh. I added the needed information like admin user and password, path to the certificates, database, etc, but I always get: ERROR: Problems unpacking installer data. Updating the CentOS didn't silve the Problem. This is written in the logfile "EraProxyInstaller.log" 2016-04-20 10:00:35 Information: Installer: Initializing logging to file /var/log/eset/RemoteAdministrator/EraProxyInstaller.log 2016-04-20 10:00:35 Information: Installer: Parsing arguments. 2016-04-20 10:00:35 Information: Installer: Verifing arguments. 2016-04-20 10:00:35 Information: Installer: Starting install sequence. 2016-04-20 10:00:35 Information: Installer: Extracting archive to /tmp/tmp.Mt6SMriGZc 2016-04-20 10:00:35 Information: Installer: Error: Problem unpacking installer data But this message tells me not really much... Can anybody help me?
  11. Hi Everyone, I'd like to use Run Command Task on ESET Remote Administrator 6.x to run Ninite with some parameters. How can i define the working directory which is a shared folder on the network. if you can provide some information regarding that. what kind of format do i use for working directory? What can i specify in terms of regular expressions for the command line, and adding command line parameters. Thank you.
  12. When attempting to upgrade using the instructions here on CentOS: hxxp://support.eset.com/kb3670/, specifically step 9: Run the ERA Server installer: ./Server-Linux-x86_64.sh --skip-license Extracting archive, please wait... Archive extracted to /tmp/tmp.lK8FpNVE9q. Checking OpenSSL ... done [OpenSSL 1.0.1e-fips 11 Feb 2013] Reading previous installation settings ..../Server-Linux-x86_64.sh: eval: line 495: unexpected EOF while looking for matching `"' ./Server-Linux-x86_64.sh: eval: line 496: syntax error: unexpected end of file ./Server-Linux-x86_64.sh: line 496: warning: syntax errors in . or eval will cause future versions of the shell to abort as Posix requires done Checking installed version... done Status of current installation is: UPGRADE Checking database connection ... failure Error: User login failed (invalid credentials provided) The log file in /var/log/eset/RemoteAdministrator/EraServerInstaller.log shows: 2016-01-27 20:19:21 Information: Exception thrown while connecting to the database as a user.. Error code: 1045, DB specific error code: 1045, error message: [unixODBC][MySQL][ODBC 5.3(w) Driver]Access denied for user 'era'@'localhost' (using password: NO) 2016-01-27 20:19:22 Information: Exception thrown while connecting to the database SERVER as a user.. Error code: 1045, DB specific error code: 1045, error message: [unixODBC][MySQL][ODBC 5.3(w) Driver]Access denied for user 'era'@'localhost' (using password: NO) It looks like the script is attempting to connect to the database and it is getting rejected as requiring a password?
  13. Hi, We deployed in the passed ESET file security to our costume servers though our own private repository, used only by our customers. Is it possible to extract the latest version so we can deploy the RPM automatically 500 servers? If no what alternative unattended methods are there. We currently run esets-4.0-8 on all linux servers and we want to update to 4.0-10 Thanks in advance for your response.
  14. Just wanted to provide some feedback. I deployed the ESET ERA Appliance for HTTP Update Caching (the ERA running on TCP 3128) and it is working great for caching updates for our clients. I've read a lot on the forums with end-user frustration with deploying the HTTP Proxy update/cache servers and this was very easy. Just required ticking a box during the web-OVA configuration. I wanted to note that on all eight servers running updating caching using the OVA, I ran successfully the Linux Agent to include these full-ERA HTTP proxies in the dashboard of our Remote Administrator that handles client tasks. It looks like the ERAAgent installs the SELinux policy and caching works normally after running the agent. In other words, the main ERA server can now communicate with other full ERA servers (not something that can be done during initial setup via the web gui). You can see in the attached picture that these ERA servers are designated with a "02" as they are the second ERA servers at their respective sites and are being controlled from the main ERA web gui. Additionally, since they are rogue detection sensors, they are also reporting in data from detected rogue agents to the main ERA dashboard.
  15. Hi there, is there any guide/howto/step-by-step how to install the MDC on the Appliance? Especially: - where to find the https certificate - which is the password for the certificate - --db-use-existing-db= ... should this be the ERAS DB? Or is there no parameter necessary (as in example) - which other params are needed? Thx a lot, meg
  16. Looking at the ESET OVA's sshd_config, x11Forwarding is turned on effectively allowing authenticated users to tunnel traffic through this server using SSH protocol. If the ESET OVA is deployed as a proxy server in a DMZ or internet-facing system, can x11 Forwarding be disabled? I have disabled X11 Forwarding on all ESET OVAs deployed as a proxy and have not noticed any degradation of service but I want to confirm with ESET support that this will not affect performance.
  17. Situation: we are using hmailserver for our mail server. This server stores all incoming mails temporarily as a file so external antivirus software (with a command line scanner) has the opportunity to scan this .tmp or .eml file. After the scan the mail server looks at the return code and acts on it by deleting the attachment or the mail if a tread is found. To do this we use a bat file like this "C:\Program Files\ESET\ESET Endpoint Antivirus\ecls.exe" /no-log-console /log-file=C:\hmailserver\logs\eset.log /no-log-all /no-quarantine /clean-mode=none /no-boots %1 exit %errorlevel% The problem is that all viruses are passed even when a tread should be found: This is what a log looked like: ECLS Command-line scanner, version 5.0.2229.0, (C) 1992-2014 ESET, spol. s r.o. Module loader, version 1060 (20150617), build 1092 Module perseus, version 1472 (20150930), build 1713 Module scanner, version 12488 (20151030), build 26481 Module archiver, version 1238 (20150921), build 1250 Module advheur, version 1162 (20150923), build 1128 Module cleaner, version 1114 (20151004), build 1145 Command line: /no-log-console /log-file=C:\hmailserver\logs\eset.log /no-log-all /no-quarantine /clean-mode=none /no-boots C:\Program Files (x86)\hMailServer\Data\{9B097597-F2B3-488D-AECC-B9BE156D5BE1}.eml Scan started at: 10/30/15 10:13:07 Scan completed at: 10/30/15 10:13:07 Scan time: 0 sec (0:00:00) Total: files - 1, objects 2 Infected: files - 0, objects 0 Cleaned: files - 0, objects 0 What are we doing wrong with the parameters. We need the scanner to scan the file, and only the file (no memory or boot sectors) and then return a value if a tread is found. The file may NOT be cleaned or quarantined. We have the exit codes set to 50. We are using Eset Endpoint antivirus 5.0.2229.1 This should be our first line of defense but for some odd reason we cannot seem to get it working. All help is welcome ps: this the 3th try. All other tries did not get posted
  18. In the last day I have deployed over eight sites globally using the ESET OVAs in a global vSphere environment. I have been snapping and adding VMware tools to all OVAs via terminal . All is well and good except for the ESET Local Cache OVAs. On both the ESET ERA (full ERA server) OVA and ESET ERA Proxy OVA, I can access the terminal window from the GUI. When it comes to the ESET Local Cache, there is no option for accessing terminal from the GUI. I attempted to boot into the GRUB menu to access the terminal through that method but was prompted for a GRUB password. Just short of using a Knoppix virtual CD to break the GRUB boot password, can somebody tell me how to access terminal in the ESET Local Cache OVA? BTW: Opened a ticket with support on the same issue under Case# 1381138.
  19. Mods: This is only my second time posting in the forums. Apologies if posting in the incorrect forum. Not sure where to post "FixIt" type threads in regards to the ERA OVA. If your NIC changes on on your ERA VM during deployment. The solution for VMware: Before powering on your VM after the initial configuration, take a VM snapshot Power on VM after snap is completed Enter command line and type "nano /etc/udev/rules.d/70-persistant-net.rules" Scroll to the right on the first entry that conains an entry. You want the ATTR address MAC address on the first line. Ignore extra lines and entries. This is the original MAC address that deployed with the VM. Write that MAC address down somewhere. # PCI device 0x8086:0x100f (e1000) SUBSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR{address}=="00:11:22:aa:bb:cc" [more text] Power off the VM. Revert to snapshot. Edit VM settings Select "Network Adapter", change the MAC Address column to "Manual" and specify the original MAC address Power on your VM and wait for configuration. The problem: I stage a lot of ERA servers in our main data center before moving them to our remote data centers. The nature of our setup requires that our vSphere environments are not joined (therefore vMotion is unavailable). To further complicate matters, DHCP is not available at these sites and bandwidth links are very slow (remote data centers). A typical ERA OVA Proxy setup for me goes like this: Deploy OVA at main site Obtain DHCP IP address Configue "Proxy" via web console (too many problems modifying ovf.xml) including static IP of this VM once it hits the new site Save settings (which cause the VM to reboot) In the VM console window, repeatedly hit "ESC" key at boot to bring up GRUB boot menu (what I am doing is preventing automatic boot) Once I am "stopped" at the GRUB boot menu I power off the VM: Effectively, this presrves the initial configuration that I did in the web GUI without appying the settings. I use VMware P2V converstion tool to "download" the image to my local machine and "upload" the image to the remote site I power on at remote site and let the configuration finish The issue is at step 7. Somewhere along the lines, I believe with the P2V tool, the NIC changes and causes the MAC address to change. Not something that occurs with vMotion but does occur when the VM is moved with P2V tool. This creates a problem for the OVA when it configures the server because it is looking fror "NIC 0" with MAC address aa:bb:cc:dd:ee:ff and what it gets is "NIC 1" with MAC address aa:bb:cc:xx:yy:zz. An exception gets thrown and the OVA answer to the end-user (you/me) is "You must redeploy".
  20. Hi guys, Hope you can help, ive attached the error message im receiving. I've no idea why its happening as installing on every other client machine has been fine.
  21. As I searched on Google I found some program like ecls.exe on windows, but I did't find the counterpart on Mac. So anyone knows something please tell me. Thank you.
  22. Hello. I'm trying to install ESET Gateway Security on a server with Linux 3.4 kernel. Once installed and licensed, I am trying to start the service but is returning the error below. Any help? Thanks!
  23. Because remote installation always failed for unknown reason. So I've decide deployment using *.bat ( Agent Live Installer ). Unfortunately, it's deploy agent only. I know, if agent installed successfully, you can push install endpoint from ERA and its easy. But, when push installation failed, error information its very simple. Look at that picture ? How can i see error log or any information ? Maybe some one can helping me, for get more information if push installation endpoint failed ? ESET describe many ways for installation, but our client doesn't have active directory for deployment via GPO or SCCM. So, i am decide make some script for manual deployment, i think its much easier than using AgentLiveInstaller.bat generated from ERA Server. This script contains 2 file agentcfg.ini and executable file. [Config] EndpointURL_32bit="hxxp://" EndpointURL_64bit="hxxp://" AgentURL_32bit="hxxp://" AgentURL_64bit="hxxp://" HostnameServer="" ERAPort="2222" AgentCert="Your BaseCode64 Agent Certificate" CACert="Your BaseCode64 Authority Certificate" Edit and change according to your server configuration. Maybe this trick can helping sysadmin for deployment ESET more easier. Notes : you must compile using autoit for get executable file sourcecode.zip
  24. Is it possible to install AVRemover_eea_nt64_enu.exe (AV Remover for Endpoint Antivirus 6) silently? I tried calling the executable from the command line with a bunch of previous used switches but had no success.
  • Create New...